Cross-site request forgery (CSRF) vulnerability in Cybozu Office prior to 8.1.6 and 9.x prior to 9.3.0, Cybozu Dezie prior to 8.0.7, and Cybozu Mailwise prior to 5.0.4 allows remote malicious users to hijack the authentication of arbitrary users for requests that change passwords.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cybozu cybozu office 7 |
||
cybozu cybozu office 9 |
||
cybozu cybozu office 9.2.1 |
||
cybozu cybozu office |
||
cybozu cybozu office 6 |
||
cybozu cybozu dezie 8.0.0 |
||
cybozu cybozu dezie 8.0.4 |
||
cybozu cybozu dezie 8.0.2 |
||
cybozu cybozu dezie |
||
cybozu cybozu dezie 8.0.5 |
||
cybozu cybozu dezie 8.0.3 |
||
cybozu cybozu dezie 8.0.1 |
||
cybozu mailwise |
||
cybozu mailwise 3.0\\(0.2\\) |
||
cybozu mailwise 3.0 |
||
cybozu mailwise 2.1 |
||
cybozu mailwise 1.0 |
||
cybozu mailwise 2.0 |
Vulmon