Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu office vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2018-0703
Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.1 allows remote malicious users to delete arbitrary files via HTTP requests.
Cybozu Office
570
VMScore
CVE-2018-0704
Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.1 allows remote malicious users to delete arbitrary files via Keitai Screen.
Cybozu Office
356
VMScore
CVE-2019-6022
Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.3 allows remote authenticated malicious users to alter arbitrary files via the 'Customapp' function.
Cybozu Office
NA
CVE-2022-29487
Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.5 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Office
356
VMScore
CVE-2018-0528
Cybozu Office 10.0.0 to 10.7.0 allows authenticated malicious users to bypass authentication to view the schedules that are not permitted to access via unspecified vectors.
Cybozu Office
356
VMScore
CVE-2021-20624
Improper access control vulnerability in Scheduler of Cybozu Office 10.0.0 to 10.8.4 allows an authenticated malicious user to bypass access restriction and alter the data of Scheduler via unspecified vectors.
Cybozu Office
356
VMScore
CVE-2021-20626
Improper access control vulnerability in Workflow of Cybozu Office 10.0.0 to 10.8.4 allows authenticated malicious users to bypass access restriction and alter the data of Workflow via unspecified vectors.
Cybozu Office
383
VMScore
CVE-2021-20627
Cross-site scripting vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.4 allows remote malicious users to inject an arbitrary script via unspecified vectors.
Cybozu Office
383
VMScore
CVE-2013-4703
Cross-site scripting (XSS) vulnerability in the top-page customization feature in Cybozu Office prior to 9.3.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Office
NA
CVE-2022-33311
Browse restriction bypass vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated malicious user to obtain the data of Address Book via unspecified vectors.
Cybozu Office
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »