Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6913
Cross-site scripting (XSS) vulnerability in a search component in Cybozu Garoon prior to 3.7.2, when Internet Explorer is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.7
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.1
Cybozu Garoon
NA
CVE-2013-6914
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.0
Cybozu Garoon
Cybozu Garoon 3.7
NA
CVE-2013-6915
Cross-site scripting (XSS) vulnerability in the system-administration component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
Cybozu Garoon 3.0
Cybozu Garoon
NA
CVE-2013-6916
Cross-site scripting (XSS) vulnerability in the Yahoo! User Interface Library in Cybozu Garoon prior to 3.7.2, when Internet Explorer 9 or 10 or Chrome is used, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.1
Cybozu Garoon 3.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
NA
CVE-2013-6004
Session fixation vulnerability in Cybozu Garoon prior to 3.7.2 allows remote malicious users to hijack web sessions via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.0
Cybozu Garoon
Cybozu Garoon 3.7
Cybozu Garoon 2.0
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
NA
CVE-2013-6005
Cross-site scripting (XSS) vulnerability in Cybozu Dezie prior to 8.1.0 allows remote malicious users to inject arbitrary web script or HTML via vectors related to the Cancel button.
Cybozu Dezie
Cybozu Dezie 8.0.6
Cybozu Dezie 8.0.0
Cybozu Dezie 8.0.5
Cybozu Dezie 8.0.4
Cybozu Dezie 8.0.3
Cybozu Dezie 8.0.2
Cybozu Dezie 8.0.1
NA
CVE-2010-2029
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote malicious users to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Cybozu Cybozu Office 7
Cybozu Cybozu Dotsales
NA
CVE-2013-3646
The Cybozu Live application prior to 2.0.1 for Android allows remote malicious users to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. NOTE: this vulnerability exists because of a CVE-2012-4008 regression.
Cybozu Cybozu Live 1.0.4
Cybozu Cybozu Live
NA
CVE-2013-3647
The WebView class in the Cybozu Live application prior to 2.0.1 for Android allows malicious users to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. NOTE: this vul...
Cybozu Cybozu Live
Cybozu Cybozu Live 1.0.4
5.4
CVSSv3
CVE-2015-8485
Cybozu Office 9.9.0 up to and including 10.3.0 allows remote authenticated users to bypass intended access restrictions and read arbitrary posting titles via unspecified vectors, a different vulnerability than CVE-2015-8484, CVE-2015-8486, and CVE-2016-1152.
Cybozu Office 10.0.0
Cybozu Office 10.0.2
Cybozu Office 9.9.0
Cybozu Office 10.1.0
Cybozu Office 10.1.2
Cybozu Office 10.2.0
Cybozu Office 10.3.0
Cybozu Office 10.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »