Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon 4.0.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2021-20766
Cross-site scripting vulnerability in Message of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Garoon
383
VMScore
CVE-2019-5928
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.6.3 allows remote malicious users to inject arbitrary web script or HTML via Customize Item function.
Cybozu Garoon
383
VMScore
CVE-2019-5929
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.6.3 allows remote malicious users to inject arbitrary web script or HTML via the application 'Memo'.
Cybozu Garoon
490
VMScore
CVE-2019-5936
Directory traversal vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated malicious users to obtain files without access privileges via the application 'Work Flow'.
Cybozu Garoon
383
VMScore
CVE-2019-5938
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote malicious users to inject arbitrary web script or HTML via the application 'Mail'.
Cybozu Garoon
383
VMScore
CVE-2019-5939
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote malicious users to inject arbitrary web script or HTML via the application 'Portal'.
Cybozu Garoon
383
VMScore
CVE-2019-5940
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote malicious users to inject arbitrary web script or HTML via the application 'Scheduler'.
Cybozu Garoon
356
VMScore
CVE-2019-5941
Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated malicious users to bypass access restriction alter the Report without access privileges via the application 'Multi Report'.
Cybozu Garoon
312
VMScore
CVE-2021-20753
Cross-site scripting vulnerability in Scheduler of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Garoon
356
VMScore
CVE-2019-5977
Mail header injection vulnerability in Cybozu Garoon 4.0.0 to 4.10.2 may allow a remote authenticated malicious users to alter mail header via the application 'E-Mail'.
Cybozu Garoon
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »