Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon 4.0.0 vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2019-5935
Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated malicious users to bypass access restriction to change user information without access privileges via the Item function of User Information.
Cybozu Garoon
4
CVSSv2
CVE-2021-20754
Improper input validation vulnerability in Workflow of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to alter the data of Workflow without the appropriate privilege.
Cybozu Garoon
4
CVSSv2
CVE-2021-20755
Viewing restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to obtain the data of Portal without the viewing privilege.
Cybozu Garoon
4
CVSSv2
CVE-2021-20756
Viewing restrictions bypass vulnerability in Address of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to obtain the data of Address without the viewing privilege.
Cybozu Garoon
4
CVSSv2
CVE-2021-20763
Operational restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to obtain the data of Portal without the appropriate privilege.
Cybozu Garoon
3.5
CVSSv2
CVE-2021-20767
Cross-site scripting vulnerability in Full Text Search of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Garoon
4
CVSSv2
CVE-2019-5942
Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated malicious users to bypass access restriction to obtain files without access privileges via the Multiple Files Download function of application 'Cabinet'.
Cybozu Garoon
4
CVSSv2
CVE-2019-5943
Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated malicious users to bypass access restriction to view the information without view privileges via the application 'Bulletin' and the application 'Cabinet'.
Cybozu Garoon
6.5
CVSSv2
CVE-2019-5934
SQL injection vulnerability in the Cybozu Garoon 4.0.0 to 4.10.0 allows attacker with administrator rights to execute arbitrary SQL commands via the Log Search function of application 'logging'.
Cybozu Garoon
4
CVSSv2
CVE-2021-20757
Operational restrictions bypass vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to alter the data of Portal without the appropriate privilege.
Cybozu Garoon
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »