Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
groupwise vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-1999-1006
Groupwise web server GWWEB.EXE allows remote malicious users to determine the real path of the web server via the HELP parameter.
Novell Groupwise 5.2
Novell Groupwise 5.5
4.6
CVSSv2
CVE-2002-0303
GroupWise 6, when using LDAP authentication and when Post Office has a blank username and password, allows malicious users to gain privileges of other users by logging in without a password.
Novell Groupwise 6.0
4.3
CVSSv2
CVE-2016-5760
Multiple cross-site scripting (XSS) vulnerabilities in the administrator console in Novell GroupWise prior to 2014 R2 Service Pack 1 Hot Patch 1 allow remote malicious users to inject arbitrary web script or HTML via the (1) token parameter to gwadmin-console/install/login.jsp or...
Novell Groupwise
Novell Groupwise 2014
4.3
CVSSv2
CVE-2016-5761
Cross-site scripting (XSS) vulnerability in Novell GroupWise prior to 2014 R2 Service Pack 1 Hot Patch 1 allows remote malicious users to inject arbitrary web script or HTML via a crafted email.
Novell Groupwise
Novell Groupwise 2014
4.3
CVSSv2
CVE-2016-9169
A reflected XSS vulnerability exists in the web console of the Document Viewer Agent in Novell GroupWise prior to 2014 R2 Support Pack 1 Hot Patch 2 that may enable a remote malicious user to execute JavaScript in the context of a valid user's browser session by getting the ...
Novell Groupwise 2014
4.3
CVSSv2
CVE-2014-0611
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 2012 before Support Pack 4 and 2014 before Support Pack 2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise
4.3
CVSSv2
CVE-2013-1087
Cross-site scripting (XSS) vulnerability in the client in Novell GroupWise up to and including 8.0.3 HP3, and 2012 through SP2, on Windows allows user-assisted remote malicious users to inject arbitrary web script or HTML via the body of an e-mail message.
Novell Groupwise 8.03
Novell Groupwise 8.0
Novell Groupwise 8.01
Novell Groupwise 7.02
Novell Groupwise 7.03
Novell Groupwise 7.0.4
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.7
Novell Groupwise 6.5
Novell Groupwise 8.02
Novell Groupwise 8.00
Novell Groupwise 7.01
Novell Groupwise 2012
Novell Groupwise
Novell Groupwise 7.0
Novell Groupwise 7.0.3
Novell Groupwise 6.5.6
Novell Groupwise 6.5.2
4.3
CVSSv2
CVE-2013-1086
Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise prior to 8.0.3 HP3, and 2012 before SP2, allows remote malicious users to inject arbitrary web script or HTML via vectors involving an onError attribute.
Novell Groupwise 2012
Novell Groupwise 8.03
Novell Groupwise 8.00
Novell Groupwise 8.02
Novell Groupwise 7.0
Novell Groupwise 7.0.4
Novell Groupwise 7.0.3
Novell Groupwise 7.02
Novell Groupwise 6.5
Novell Groupwise 7.03
Novell Groupwise 7.01
Novell Groupwise 5.57e
Novell Groupwise 5.5
Novell Groupwise 5.2
Novell Groupwise 8.0
Novell Groupwise 8.01
Novell Groupwise 6.5.6
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.7
Novell Groupwise 6.0.1
Novell Groupwise
4.3
CVSSv2
CVE-2012-4912
Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 8.0 before Support Pack 3 and 2012 before Support Pack 1 allows remote malicious users to inject arbitrary web script or HTML via a crafted signature in an HTML e-mail message.
Novell Groupwise 8.00
Novell Groupwise 8.01
Novell Groupwise 8.02
Novell Groupwise 8.0
Novell Groupwise 2012
4.3
CVSSv2
CVE-2011-3827
The iCalendar component in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before Support Pack 3 allows remote malicious users to cause a denial of service (out-of-bounds read and daemon crash) via a crafted date-time string in a .ics attachment.
Novell Groupwise
Novell Groupwise 8.00
Novell Groupwise 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »