Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu cybozu office vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2014-5314
Buffer overflow in Cybozu Office 9 and 10 prior to 10.1.0, Mailwise 4 and 5 prior to 5.1.4, and Dezie 8 prior to 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages.
Cybozu Office 9.0
Cybozu Office
Cybozu Dezie
Cybozu Mailwise 4.0
Cybozu Mailwise
383
VMScore
CVE-2011-1335
Cross-site scripting (XSS) vulnerability in Cybozu Office 6, 7, and 8 prior to 8.1.1 allows remote malicious users to inject arbitrary web script or HTML via vectors related to the "address book and user list functions."
Cybozu Office 6
Cybozu Office 7
Cybozu Office 8
516
VMScore
CVE-2010-2029
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote malicious users to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Cybozu Cybozu Office 7
Cybozu Cybozu Dotsales
490
VMScore
CVE-2011-2677
Cybozu Office prior to 8.0.0 allows remote authenticated users to bypass intended access restrictions and access sensitive information (time card and attendance) via unspecified vectors related to manipulation of a URL.
Cybozu Office 6
Cybozu Office
405
VMScore
CVE-2006-4490
Multiple directory traversal vulnerabilities in Cybozu Office prior to 6.6 Build 1.3 and Share 360 prior to 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s36...
Cybozu Cybozu Office
Cybozu Share 360
1 EDB exploit
605
VMScore
CVE-2016-1153
customapp in Cybozu Office 9.9.0 up to and including 10.3.0 allows remote authenticated users to cause a denial of service via unspecified vectors, a different vulnerability than CVE-2015-8489.
Cybozu Office 10.3.0
Cybozu Office 9.9.0
516
VMScore
CVE-2013-3656
Cybozu Office 9.1.0 and previous versions does not properly manage sessions, which allows remote malicious users to bypass authentication by leveraging knowledge of a login URL.
Cybozu Cybozu Office
445
VMScore
CVE-2006-4492
Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote malicious users to obtain sensitive information, including users and groups, via unspecified vectors.
Cybozu Cybozu Office 6.5 Build 1.2
605
VMScore
CVE-2008-6744
Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie prior to 6.0(1.0), and Cybozu Garoon 2.0.0 up to and including 2.1.3 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Cybozu Cybozu Garoon 2.0.0
Cybozu Cybozu Garoon 2.1.3
Cybozu Cybozu Garoon 2.0.3
Cybozu Cybozu Garoon 2.0.2
Cybozu Cybozu Garoon 2.0.1
Cybozu Cybozu Office 6
Cybozu Cybozu Garoon 2.0.5
Cybozu Cybozu Garoon 2.0.4
Cybozu Cybozu Garoon 2.1.1
Cybozu Cybozu Garoon 2.0.6
Cybozu Cybozu Garoon 2.1.0
Cybozu Cybozu Garoon 2.1.2
Cybozu Cybozu Dezie
383
VMScore
CVE-2011-1333
Cross-site scripting (XSS) vulnerability in Cybozu Office 6 and Cybozu Garoon 2.0.0 up to and including 2.1.3 allows remote malicious users to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the bulletin board system."
Cybozu Garoon 2.1.2
Cybozu Garoon 2.0.5
Cybozu Garoon 2.0.4
Cybozu Garoon 2.1.1
Cybozu Garoon 2.0.1
Cybozu Garoon 2.0.3
Cybozu Garoon 2.0.0
Cybozu Garoon 2.1.3
Cybozu Garoon 2.0.6
Cybozu Garoon 2.1.0
Cybozu Garoon 2.0.2
Cybozu Office 6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »