Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon 3.5.3 vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2013-6006
Cybozu Garoon 3.5 up to and including 3.7 SP2 allows remote malicious users to bypass Keitai authentication via a modified user ID in a request.
Cybozu Garoon 3.5
Cybozu Garoon 3.5.3
Cybozu Garoon 3.7
6
CVSSv2
CVE-2013-0701
SQL injection vulnerability in Cybozu Garoon 2.5.0 up to and including 3.5.3 allows remote authenticated users to execute arbitrary SQL commands by leveraging a logging privilege.
Cybozu Garoon 3.5.3
Cybozu Garoon 2.5.0
3.5
CVSSv2
CVE-2014-1992
Cross-site scripting (XSS) vulnerability in the Messages functionality in Cybozu Garoon 3.1.x, 3.5.x, and 3.7.x prior to 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5.5
Cybozu Garoon 3.7
Cybozu Garoon 3.1.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.1.2
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.0
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.4
Cybozu Garoon 3.5.1
Cybozu Garoon 3.5.3
10
CVSSv2
CVE-2014-1987
The CGI component in Cybozu Garoon 3.1.0 up to and including 3.7 SP3 allows remote malicious users to execute arbitrary commands via unspecified vectors.
Cybozu Garoon 3.7
Cybozu Garoon 3.5.5
Cybozu Garoon 3.5.0
Cybozu Garoon 3.1.3
Cybozu Garoon 3.1.2
Cybozu Garoon 3.1.1
Cybozu Garoon 3.5.4
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.1
Cybozu Garoon 3.1.0
4.3
CVSSv2
CVE-2013-0702
Cross-site scripting (XSS) vulnerability in Cybozu Garoon 2.0.0 up to and including 3.5.3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 2.0.3
Cybozu Garoon 2.0.2
Cybozu Garoon 2.0.0
Cybozu Garoon 2.1.3
Cybozu Garoon 2.5.0
Cybozu Garoon 2.1.2
Cybozu Garoon 2.0.5
Cybozu Garoon 2.0.4
Cybozu Garoon 2.0.6
Cybozu Garoon 2.1.0
Cybozu Garoon 3.5.3
Cybozu Garoon 2.1.1
Cybozu Garoon 2.0.1
6
CVSSv2
CVE-2014-1989
Cybozu Garoon 3.0 up to and including 3.7 SP3 allows remote authenticated users to bypass intended access restrictions and delete schedule information via unspecified API calls.
Cybozu Garoon 3.0.0
Cybozu Garoon 3.0.1
Cybozu Garoon 3.0.2
Cybozu Garoon 3.7
Cybozu Garoon 3.7.0
Cybozu Garoon 3.7.1
Cybozu Garoon 3.7.2
Cybozu Garoon 3.1.0
Cybozu Garoon 3.1.2
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.5
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.0
Cybozu Garoon 3.5.1
Cybozu Garoon 3.5.2
Cybozu Garoon 3.0.3
Cybozu Garoon 3.1.1
Cybozu Garoon 3.5.4
7
CVSSv2
CVE-2015-5649
Cybozu Garoon 3.x up to and including 3.7.5 and 4.x up to and including 4.0.3 mishandles authentication requests, which allows remote authenticated users to conduct LDAP injection attacks, and consequently bypass intended login restrictions or obtain sensitive information, by lev...
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.4
Cybozu Garoon 3.5.5
Cybozu Garoon 3.7
Cybozu Garoon 3.0.3
Cybozu Garoon 3.1.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.1.2
Cybozu Garoon 3.7.3
Cybozu Garoon 4.0.0
Cybozu Garoon 4.0.3
Cybozu Garoon 3.0.0
Cybozu Garoon 3.0.2
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.1
Cybozu Garoon 3.7.1
Cybozu Garoon 3.0.1
Cybozu Garoon 3.5.0
Cybozu Garoon 3.5.2
Cybozu Garoon 3.7.0
Cybozu Garoon 3.7.2
5.5
CVSSv2
CVE-2016-1189
Cybozu Garoon 3.x and 4.x prior to 4.2.1 allows remote authenticated users to bypass intended restrictions on reading, creating, or modifying a portlet via unspecified vectors.
Cybozu Garoon 3.5.5
Cybozu Garoon 3.5.4
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 4.0.0
Cybozu Garoon 3.7.5
Cybozu Garoon 3.7.4
Cybozu Garoon 3.1.1
Cybozu Garoon 3.1.0
Cybozu Garoon 4.2.0
Cybozu Garoon 4.0.2
Cybozu Garoon 3.7.3
Cybozu Garoon 3.7.1
Cybozu Garoon 3.5.0
Cybozu Garoon 3.1.2
Cybozu Garoon 4.0.3
Cybozu Garoon 3.7.2
Cybozu Garoon 3.7.0
Cybozu Garoon 3.5.1
Cybozu Garoon 3.1.3
4
CVSSv2
CVE-2016-1190
Cybozu Garoon 3.1 up to and including 4.2 allows remote authenticated users to bypass intended restrictions on MultiReport reading via unspecified vectors.
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.3
Cybozu Garoon 3.7.2
Cybozu Garoon 3.7.1
Cybozu Garoon 4.2.0
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.1
Cybozu Garoon 3.5.0
Cybozu Garoon 3.1.3
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.7.0
Cybozu Garoon 3.5.4
Cybozu Garoon 3.1.1
Cybozu Garoon 4.0.2
Cybozu Garoon 4.0.0
Cybozu Garoon 3.5.5
Cybozu Garoon 3.5.3
Cybozu Garoon 3.1.2
Cybozu Garoon 3.1.0
4
CVSSv2
CVE-2017-2254
Cybozu Garoon 3.5.0 to 4.2.5 allows an malicious user to cause a denial of service in the application menu's edit function via specially crafted input
Cybozu Garoon 4.2.3
Cybozu Garoon 4.2.4
Cybozu Garoon 4.2.5
Cybozu Garoon 3.5.0
Cybozu Garoon 4.2.1
Cybozu Garoon 3.5.5
Cybozu Garoon 3.7.0
Cybozu Garoon 3.7.1
Cybozu Garoon 3.7.2
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.4
Cybozu Garoon 3.7.4
Cybozu Garoon 4.0.1
Cybozu Garoon 4.2.0
Cybozu Garoon 3.7.3
Cybozu Garoon 4.2.2
Cybozu Garoon 3.5.1
Cybozu Garoon 3.5.3
Cybozu Garoon 3.7.5
Cybozu Garoon 4.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »