Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2013-6912
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon prior to 3.7.2, when Internet Explorer 6 through 9 is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.0
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 3.7
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon
312
VMScore
CVE-2013-6914
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.0
Cybozu Garoon
Cybozu Garoon 3.7
312
VMScore
CVE-2013-6915
Cross-site scripting (XSS) vulnerability in the system-administration component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
Cybozu Garoon 3.0
Cybozu Garoon
383
VMScore
CVE-2013-6916
Cross-site scripting (XSS) vulnerability in the Yahoo! User Interface Library in Cybozu Garoon prior to 3.7.2, when Internet Explorer 9 or 10 or Chrome is used, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.1
Cybozu Garoon 3.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
312
VMScore
CVE-2013-6911
Cross-site scripting (XSS) vulnerability in the bulletin-board component in Cybozu Garoon prior to 3.7.2, when Internet Explorer or Firefox is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.0
Cybozu Garoon 2.0
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon
Cybozu Garoon 3.7
Cybozu Garoon 3.1
312
VMScore
CVE-2013-6913
Cross-site scripting (XSS) vulnerability in a search component in Cybozu Garoon prior to 3.7.2, when Internet Explorer is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.7
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.1
Cybozu Garoon
516
VMScore
CVE-2010-2029
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote malicious users to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Cybozu Cybozu Office 7
Cybozu Cybozu Dotsales
605
VMScore
CVE-2013-3646
The Cybozu Live application prior to 2.0.1 for Android allows remote malicious users to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. NOTE: this vulnerability exists because of a CVE-2012-4008 regression.
Cybozu Cybozu Live 1.0.4
Cybozu Cybozu Live
605
VMScore
CVE-2013-3647
The WebView class in the Cybozu Live application prior to 2.0.1 for Android allows malicious users to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. NOTE: this vul...
Cybozu Cybozu Live
Cybozu Cybozu Live 1.0.4
490
VMScore
CVE-2015-8484
Cybozu Office 9.9.0 up to and including 10.3.0 allows remote authenticated users to bypass intended calendar-viewing restrictions via unspecified vectors, a different vulnerability than CVE-2015-8485, CVE-2015-8486, and CVE-2016-1152.
Cybozu Office 10.0.0
Cybozu Office 10.0.2
Cybozu Office 10.1.2
Cybozu Office 10.2.0
Cybozu Office 10.3.0
Cybozu Office 9.9.0
Cybozu Office 10.0.1
Cybozu Office 10.1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »