Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
groupwise vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2018-12468
A vulnerability in the administration console of Micro Focus GroupWise prior to version 18.0.2 may allow a remote attacker authenticated as an administrator to upload files to an arbitrary path on the server. In certain circumstances this could result in remote code execution.
Microfocus Groupwise
9.3
CVSSv2
CVE-2007-6435
Stack-based buffer overflow in Novell GroupWise prior to 6.5.7, when HTML preview of e-mail is enabled, allows user-assisted remote malicious users to execute arbitrary code via a long SRC attribute in an IMG element when forwarding or replying to a crafted e-mail.
Novell Groupwise
4.3
CVSSv2
CVE-2014-0611
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 2012 before Support Pack 4 and 2014 before Support Pack 2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise
NA
CVE-2022-38756
A vulnerability has been identified in Micro Focus GroupWise Web in versions before 18.4.2. The GW Web component makes a request to the Post Office Agent that contains sensitive information in the query parameters that could be logged by any intervening HTTP proxies.
Microfocus Groupwise
4.3
CVSSv2
CVE-2010-2779
Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise 8.x prior to 8.0 SP2 allows remote malicious users to inject arbitrary web script or HTML via a crafted message, related to "replies."
Novell Groupwise 8.0
5
CVSSv2
CVE-2001-0355
Novell Groupwise 5.5 (sp1 and sp2) allows a remote user to access arbitrary files via an implementation error in Groupwise system policies.
Novell Groupwise 5.5
10
CVSSv2
CVE-2011-0333
Heap-based buffer overflow in the NgwiCalVTimeZoneBody::ParseSelf function in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote malicious users to execute arbitrary code via a crafted TZNAME variable in a VCALENDAR attachment in an e-m...
Novell Groupwise 8.0
10
CVSSv2
CVE-2011-0334
Stack-based buffer overflow in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote malicious users to execute arbitrary code via a long HTTP request for a .css file.
Novell Groupwise 8.0
9.3
CVSSv2
CVE-2008-2069
Buffer overflow in Novell GroupWise 7 allows remote malicious users to cause a denial of service or execute arbitrary code via a long argument in a mailto: URI.
Novell Groupwise 7.0
1 EDB exploit
5
CVSSv2
CVE-2009-3863
Buffer overflow in the gxmim1.dll ActiveX control in Novell Groupwise Client 7.0.3.1294 allows remote malicious users to cause a denial of service (application crash) via a long argument to the SetFontFace method.
Novell Groupwise 7.0.3.1294
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »