Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2001-1458
Directory traversal vulnerability in Novell GroupWise 5.5 and 6.0 allows remote malicious users to read arbitrary files via a request for /servlet/webacc?User.html= that contains "../" (dot dot) sequences and a null character.
Novell Groupwise 6.0
Novell Groupwise 5.5
445
VMScore
CVE-2001-1232
GroupWise WebAccess 5.5 with directory indexing enabled allows a remote malicious user to view arbitrary directory contents via an HTTP request with a lowercase "get".
Novell Groupwise 5.5
445
VMScore
CVE-2001-1231
GroupWise 5.5 and 6 running in live remote or smart caching mode allows remote malicious users to read arbitrary users' mailboxes by extracting usernames and passwords from sniffed network traffic, as addressed by the "Padlock" fix.
Novell Groupwise 6.0
Novell Groupwise 5.5
445
VMScore
CVE-2001-1233
Netware Enterprise Web Server 5.1 running GroupWise WebAccess 5.5 with Novell Directory Services (NDS) enabled allows remote malicious users to enumerate user names, group names and other system information by accessing ndsobj.nlm.
Novell Groupwise Webaccess 5.5
Novell Netware 5.1
445
VMScore
CVE-2001-0355
Novell Groupwise 5.5 (sp1 and sp2) allows a remote user to access arbitrary files via an implementation error in Groupwise system policies.
Novell Groupwise 5.5
445
VMScore
CVE-1999-1006
Groupwise web server GWWEB.EXE allows remote malicious users to determine the real path of the web server via the HELP parameter.
Novell Groupwise 5.5
Novell Groupwise 5.2
435
VMScore
CVE-2006-4220
Multiple cross-site scripting (XSS) vulnerabilities in webacc in Novell GroupWise WebAccess prior to 7 Support Pack 3 Public Beta allow remote malicious users to inject arbitrary web script or HTML via the (1) User.html, (2) Error, (3) User.Theme.index, and (4) and User.lang para...
Novell Groupwise 7.0
Novell Groupwise Webaccess
Novell Groupwise 7.0.0
Novell Groupwise 5.57e
Novell Groupwise 6.5.7
1 EDB exploit
435
VMScore
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 6.0
1 EDB exploit
409
VMScore
CVE-2002-0303
GroupWise 6, when using LDAP authentication and when Post Office has a blank username and password, allows malicious users to gain privileges of other users by logging in without a password.
Novell Groupwise 6.0
383
VMScore
CVE-2016-5760
Multiple cross-site scripting (XSS) vulnerabilities in the administrator console in Novell GroupWise prior to 2014 R2 Service Pack 1 Hot Patch 1 allow remote malicious users to inject arbitrary web script or HTML via the (1) token parameter to gwadmin-console/install/login.jsp or...
Novell Groupwise
Novell Groupwise 2014
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »