Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2012-0272
Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 8.0 before Support Pack 3 allows remote malicious users to inject arbitrary web script or HTML via the merge parameter.
Novell Groupwise 8.00
Novell Groupwise 8.0
755
VMScore
CVE-2001-1195
Novell Groupwise 5.5 and 6.0 Servlet Gateway is installed with a default username and password for the servlet manager, which allows remote malicious users to gain privileges.
Novell Groupwise 5.5
Novell Groupwise 6.0
1 EDB exploit
445
VMScore
CVE-1999-1006
Groupwise web server GWWEB.EXE allows remote malicious users to determine the real path of the web server via the HELP parameter.
Novell Groupwise 5.2
Novell Groupwise 5.5
445
VMScore
CVE-2001-1231
GroupWise 5.5 and 6 running in live remote or smart caching mode allows remote malicious users to read arbitrary users' mailboxes by extracting usernames and passwords from sniffed network traffic, as addressed by the "Padlock" fix.
Novell Groupwise 5.5
Novell Groupwise 6.0
383
VMScore
CVE-2006-3817
Cross-site scripting (XSS) vulnerability in Novell GroupWise WebAccess 6.5 and 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via an encoded SCRIPT element in an e-mail message with the UTF-7 character set, as demonstrated by the "+A...
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
383
VMScore
CVE-2006-3818
Cross-site scripting (XSS) vulnerability in the login page in Novell GroupWise WebAccess 6.5 prior to 20060721 and WebAccess 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via the GWAP.version parameter.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
445
VMScore
CVE-2006-4511
Messenger Agents (nmma.exe) in Novell GroupWise 2.0.2 and 1.0.6 allows remote malicious users to cause a denial of service (crash) via a crafted HTTP POST request to TCP port 8300 with a modified val parameter, which triggers a null dereference related to "zero-size strings ...
Novell Groupwise Messenger 1.0.6
Novell Groupwise Messenger 2.0.2
435
VMScore
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 6.0
1 EDB exploit
505
VMScore
CVE-1999-1005
Groupwise web server GWWEB.EXE allows remote malicious users to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
Novell Groupwise 5.5
Netscape Enterprise Server 3.0.7a
Novell Groupwise 5.2
1 EDB exploit
890
VMScore
CVE-2003-1551
Unspecified vulnerability in Novell GroupWise 6 SP3 WebAccess before Revision F has unknown impact and attack vectors related to "malicious script."
Novell Groupwise
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »