Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon 4.0.0 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-20765
Cross-site scripting vulnerability in Bulletin of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Garoon
6.1
CVSSv3
CVE-2019-5928
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.6.3 allows remote malicious users to inject arbitrary web script or HTML via Customize Item function.
Cybozu Garoon
6.1
CVSSv3
CVE-2019-5929
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.6.3 allows remote malicious users to inject arbitrary web script or HTML via the application 'Memo'.
Cybozu Garoon
5.4
CVSSv3
CVE-2019-5936
Directory traversal vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated malicious users to obtain files without access privileges via the application 'Work Flow'.
Cybozu Garoon
6.1
CVSSv3
CVE-2019-5938
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote malicious users to inject arbitrary web script or HTML via the application 'Mail'.
Cybozu Garoon
6.1
CVSSv3
CVE-2019-5939
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote malicious users to inject arbitrary web script or HTML via the application 'Portal'.
Cybozu Garoon
6.1
CVSSv3
CVE-2019-5940
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote malicious users to inject arbitrary web script or HTML via the application 'Scheduler'.
Cybozu Garoon
4.3
CVSSv3
CVE-2019-5941
Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated malicious users to bypass access restriction alter the Report without access privileges via the application 'Multi Report'.
Cybozu Garoon
5.4
CVSSv3
CVE-2021-20753
Cross-site scripting vulnerability in Scheduler of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Garoon
4.3
CVSSv3
CVE-2019-5977
Mail header injection vulnerability in Cybozu Garoon 4.0.0 to 4.10.2 may allow a remote authenticated malicious users to alter mail header via the application 'E-Mail'.
Cybozu Garoon
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »