Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu cybozu office vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2013-4703
Cross-site scripting (XSS) vulnerability in the top-page customization feature in Cybozu Office prior to 9.3.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Office
NA
CVE-2022-33311
Browse restriction bypass vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated malicious user to obtain the data of Address Book via unspecified vectors.
Cybozu Office
NA
CVE-2022-30604
Cross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Office
NA
CVE-2022-30693
Information disclosure vulnerability in the system configuration of Cybozu Office 10.0.0 to 10.8.5 allows a remote malicious user to obtain the data of the product via unspecified vectors.
Cybozu Office
383
VMScore
CVE-2021-20628
Cross-site scripting vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.4 allows remote malicious users to inject an arbitrary script via unspecified vectors. Note that this vulnerability occurs only when using Mozilla Firefox.
Cybozu Office
356
VMScore
CVE-2021-20630
Improper access control vulnerability in Phone Messages of Cybozu Office 10.0.0 to 10.8.4 allows authenticated malicious users to bypass access restriction and obtain the data of Phone Messages via unspecified vectors.
Cybozu Office
356
VMScore
CVE-2021-20631
Improper input validation vulnerability in Custom App of Cybozu Office 10.0.0 to 10.8.4 allows authenticated malicious user to alter the data of Custom App via unspecified vectors.
Cybozu Office
356
VMScore
CVE-2021-20633
Improper access control vulnerability in Cabinet of Cybozu Office 10.0.0 to 10.8.4 allows authenticated malicious users to bypass access restriction and obtain the date of Cabinet via unspecified vectors.
Cybozu Office
NA
CVE-2022-29891
Browse restriction bypass vulnerability in Custom Ap of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated malicious user to obtain the data of Custom App via unspecified vectors.
Cybozu Office
356
VMScore
CVE-2021-20625
Improper access control vulnerability in Bulletin Board of Cybozu Office 10.0.0 to 10.8.4 allows an authenticated malicious user to bypass access restriction and alter the data of Bulletin Board via unspecified vectors.
Cybozu Office
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »