Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6913
Cross-site scripting (XSS) vulnerability in a search component in Cybozu Garoon prior to 3.7.2, when Internet Explorer is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.7
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.1
Cybozu Garoon
NA
CVE-2013-6914
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.0
Cybozu Garoon
Cybozu Garoon 3.7
NA
CVE-2013-6915
Cross-site scripting (XSS) vulnerability in the system-administration component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
Cybozu Garoon 3.0
Cybozu Garoon
NA
CVE-2013-6916
Cross-site scripting (XSS) vulnerability in the Yahoo! User Interface Library in Cybozu Garoon prior to 3.7.2, when Internet Explorer 9 or 10 or Chrome is used, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.1
Cybozu Garoon 3.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
NA
CVE-2013-6004
Session fixation vulnerability in Cybozu Garoon prior to 3.7.2 allows remote malicious users to hijack web sessions via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.0
Cybozu Garoon
Cybozu Garoon 3.7
Cybozu Garoon 2.0
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
NA
CVE-2013-6005
Cross-site scripting (XSS) vulnerability in Cybozu Dezie prior to 8.1.0 allows remote malicious users to inject arbitrary web script or HTML via vectors related to the Cancel button.
Cybozu Dezie
Cybozu Dezie 8.0.6
Cybozu Dezie 8.0.0
Cybozu Dezie 8.0.5
Cybozu Dezie 8.0.4
Cybozu Dezie 8.0.3
Cybozu Dezie 8.0.2
Cybozu Dezie 8.0.1
NA
CVE-2013-3646
The Cybozu Live application prior to 2.0.1 for Android allows remote malicious users to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. NOTE: this vulnerability exists because of a CVE-2012-4008 regression.
Cybozu Cybozu Live 1.0.4
Cybozu Cybozu Live
NA
CVE-2010-2029
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote malicious users to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Cybozu Cybozu Office 7
Cybozu Cybozu Dotsales
NA
CVE-2013-3647
The WebView class in the Cybozu Live application prior to 2.0.1 for Android allows malicious users to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. NOTE: this vul...
Cybozu Cybozu Live
Cybozu Cybozu Live 1.0.4
7.5
CVSSv3
CVE-2016-7833
Cybozu Dezie 8.0.0 to 8.1.1 allows remote malicious users to bypass access restrictions to delete an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.
Cybozu Dezie 8.0.3
Cybozu Dezie 8.0.4
Cybozu Dezie 8.0.5
Cybozu Dezie 8.0.6
Cybozu Dezie 8.0.7
Cybozu Dezie 8.1.1
Cybozu Dezie 8.1.0
Cybozu Dezie 8.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »