Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
groupwise vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2007-6435
Stack-based buffer overflow in Novell GroupWise prior to 6.5.7, when HTML preview of e-mail is enabled, allows user-assisted remote malicious users to execute arbitrary code via a long SRC attribute in an IMG element when forwarding or replying to a crafted e-mail.
Novell Groupwise
NA
CVE-2022-38756
A vulnerability has been identified in Micro Focus GroupWise Web in versions before 18.4.2. The GW Web component makes a request to the Post Office Agent that contains sensitive information in the query parameters that could be logged by any intervening HTTP proxies.
Microfocus Groupwise
890
VMScore
CVE-2003-1551
Unspecified vulnerability in Novell GroupWise 6 SP3 WebAccess before Revision F has unknown impact and attack vectors related to "malicious script."
Novell Groupwise
383
VMScore
CVE-2014-0611
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 2012 before Support Pack 4 and 2014 before Support Pack 2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise
409
VMScore
CVE-2002-0303
GroupWise 6, when using LDAP authentication and when Post Office has a blank username and password, allows malicious users to gain privileges of other users by logging in without a password.
Novell Groupwise 6.0
445
VMScore
CVE-2002-0341
GWWEB.EXE in GroupWise Web Access 5.5, and possibly other versions, allows remote malicious users to determine the full pathname of the web server via an HTTP request with an invalid HTMLVER parameter.
Novell Groupwise 5.5
505
VMScore
CVE-2009-3863
Buffer overflow in the gxmim1.dll ActiveX control in Novell Groupwise Client 7.0.3.1294 allows remote malicious users to cause a denial of service (application crash) via a long argument to the SetFontFace method.
Novell Groupwise 7.0.3.1294
1 EDB exploit
505
VMScore
CVE-2005-2804
Integer overflow in the registry parsing code in GroupWise 6.5.3, and possibly earlier version, allows remote malicious users to cause a denial of service (application crash) via a large TCP/IP port in the Windows registry key.
Novell Groupwise 6.5.3
1 EDB exploit
890
VMScore
CVE-2007-2171
Stack-based buffer overflow in the base64_decode function in GWINTER.exe in Novell GroupWise (GW) WebAccess prior to 7.0 SP2 allows remote malicious users to execute arbitrary code via long base64 content in an HTTP Basic Authentication request.
Novell Groupwise 7.0
383
VMScore
CVE-2011-2661
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 8.0 before HP3 allow remote malicious users to inject arbitrary web script or HTML via the (1) Directory.Item.name or (2) Directory.Item.displayName parameter.
Novell Groupwise 8.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »