Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
groupwise vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-2513
Novell GroupWise 7 before SP2 20070524, and GroupWise 6 prior to 6.5 post-SP6 20070522, allows remote malicious users to obtain credentials via a man-in-the-middle attack.
Novell Groupwise 6.5
Novell Groupwise 7.0
9
CVSSv2
CVE-2010-2777
Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise 7.x prior to 7.0 post-SP4 FTF and 8.x prior to 8.0 SP2 allows remote malicious users to execute arbitrary code via a long mailbox name in a CREATE command.
Novell Groupwise 7.0
Novell Groupwise 8.0
1 EDB exploit
4.3
CVSSv2
CVE-2010-2778
Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise 7.x prior to 7.0 post-SP4 FTF and 8.x prior to 8.0 SP2 allows remote malicious users to inject arbitrary web script or HTML via a crafted message, related to a "Javascript XSS exploit."
Novell Groupwise 8.0
Novell Groupwise 7.0
4.3
CVSSv2
CVE-2012-0272
Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 8.0 before Support Pack 3 allows remote malicious users to inject arbitrary web script or HTML via the merge parameter.
Novell Groupwise 8.00
Novell Groupwise 8.0
5
CVSSv2
CVE-2006-4511
Messenger Agents (nmma.exe) in Novell GroupWise 2.0.2 and 1.0.6 allows remote malicious users to cause a denial of service (crash) via a crafted HTTP POST request to TCP port 8300 with a modified val parameter, which triggers a null dereference related to "zero-size strings ...
Novell Groupwise Messenger 1.0.6
Novell Groupwise Messenger 2.0.2
4.3
CVSSv2
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 6.0
1 EDB exploit
4.3
CVSSv2
CVE-2006-3817
Cross-site scripting (XSS) vulnerability in Novell GroupWise WebAccess 6.5 and 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via an encoded SCRIPT element in an e-mail message with the UTF-7 character set, as demonstrated by the "+A...
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
4.3
CVSSv2
CVE-2006-3818
Cross-site scripting (XSS) vulnerability in the login page in Novell GroupWise WebAccess 6.5 prior to 20060721 and WebAccess 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via the GWAP.version parameter.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
5
CVSSv2
CVE-1999-1005
Groupwise web server GWWEB.EXE allows remote malicious users to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
Novell Groupwise 5.5
Netscape Enterprise Server 3.0.7a
Novell Groupwise 5.2
1 EDB exploit
NA
CVE-2022-38756
A vulnerability has been identified in Micro Focus GroupWise Web in versions before 18.4.2. The GW Web component makes a request to the Post Office Agent that contains sensitive information in the query parameters that could be logged by any intervening HTTP proxies.
Microfocus Groupwise
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »