Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1987
The CGI component in Cybozu Garoon 3.1.0 up to and including 3.7 SP3 allows remote malicious users to execute arbitrary commands via unspecified vectors.
Cybozu Garoon 3.7
Cybozu Garoon 3.5.5
Cybozu Garoon 3.5.0
Cybozu Garoon 3.1.3
Cybozu Garoon 3.1.2
Cybozu Garoon 3.1.1
Cybozu Garoon 3.5.4
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.1
Cybozu Garoon 3.1.0
NA
CVE-2014-1992
Cross-site scripting (XSS) vulnerability in the Messages functionality in Cybozu Garoon 3.1.x, 3.5.x, and 3.7.x prior to 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5.5
Cybozu Garoon 3.7
Cybozu Garoon 3.1.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.1.2
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.0
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.4
Cybozu Garoon 3.5.1
Cybozu Garoon 3.5.3
7.5
CVSSv3
CVE-2016-1193
Cybozu Garoon 3.7 up to and including 4.2 allows remote malicious users to obtain sensitive email-reading information via unspecified vectors.
Cybozu Garoon 3.7.2
Cybozu Garoon 3.7.1
Cybozu Garoon 3.7.0
Cybozu Garoon 4.2.0
Cybozu Garoon 4.0.3
Cybozu Garoon 4.0.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.7.3
Cybozu Garoon 4.0.0
Cybozu Garoon 3.7.4
4.3
CVSSv3
CVE-2016-1192
Directory traversal vulnerability in the logging implementation in Cybozu Garoon 3.7 up to and including 4.2 allows remote authenticated users to read a log file via unspecified vectors.
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.3
Cybozu Garoon 3.7.2
Cybozu Garoon 3.7.1
Cybozu Garoon 3.7.0
Cybozu Garoon 4.2.0
Cybozu Garoon 4.0.3
Cybozu Garoon 4.0.2
Cybozu Garoon 4.0.0
NA
CVE-2011-1332
Cross-site scripting (XSS) vulnerability in Cybozu Garoon 2.0.0 up to and including 2.1.3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2008-6570.
Cybozu Garoon 2.0.5
Cybozu Garoon 2.1.1
Cybozu Garoon 2.0.2
Cybozu Garoon 2.1.3
Cybozu Garoon 2.0.6
Cybozu Garoon 2.0.1
Cybozu Garoon 2.1.0
Cybozu Garoon 2.0.3
Cybozu Garoon 2.1.2
Cybozu Garoon 2.0.4
Cybozu Garoon 2.0.0
4.3
CVSSv3
CVE-2017-2115
Cybozu Office 10.0.0 to 10.5.0 allows remote authenticated malicious users to bypass access restriction to obtain "customapp" information via unspecified vectors.
Cybozu Office 10.0.1
Cybozu Office 10.1.0
Cybozu Office 10.2.0
Cybozu Office 10.3.0
Cybozu Office 10.4.0
Cybozu Office 10.5.0
Cybozu Office 10.0.0
Cybozu Office 10.0.2
Cybozu Office 10.1.2
4.3
CVSSv3
CVE-2017-2116
Cybozu Office 10.0.0 to 10.5.0 allows remote authenticated malicious users to bypass access restriction to delete "customapp" templates via unspecified vectors.
Cybozu Office 10.1.2
Cybozu Office 10.2.0
Cybozu Office 10.3.0
Cybozu Office 10.4.0
Cybozu Office 10.0.1
Cybozu Office 10.1.0
Cybozu Office 10.5.0
Cybozu Office 10.0.0
Cybozu Office 10.0.2
5.4
CVSSv3
CVE-2017-2145
Session fixation vulnerability in Cybozu Garoon 4.0.0 to 4.2.4 allows remote malicious users to perform arbitrary operations via unspecified vectors.
Cybozu Garoon 4.0.0
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
Cybozu Garoon 4.2.1
Cybozu Garoon 4.0.1
Cybozu Garoon 4.2.2
Cybozu Garoon 4.2.4
Cybozu Garoon 4.0.3
Cybozu Garoon 4.2.3
NA
CVE-2013-6914
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.0
Cybozu Garoon
Cybozu Garoon 3.7
NA
CVE-2013-6004
Session fixation vulnerability in Cybozu Garoon prior to 3.7.2 allows remote malicious users to hijack web sessions via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.0
Cybozu Garoon
Cybozu Garoon 3.7
Cybozu Garoon 2.0
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »