| CVE-2017-2109 |
low |
2.5 |
2.5 |
|
|
cybozu |
9y ago |
Cybozu KUNAI for Android 3.0.4 to 3.0.5.1 allow remote attackers to obtain log information through a malicious Android application. |
| CVE-2016-4874 |
low |
3.5 |
3.5 |
|
|
cybozu |
9y ago |
Cybozu Office 9.0.0 through 10.4.0 allows remote attackers to conduct a "reflected file download" attack. |
| CVE-2016-1185 |
low |
2.5 |
2.5 |
|
|
cybozu |
10y ago |
The Cybozu kintone mobile application 1.x before 1.0.6 for Android allows attackers to discover an authentication token via a crafted application. |
| CVE-2014-1995 |
low |
— |
3.5 |
|
|
cybozu |
12y ago |
Cross-site scripting (XSS) vulnerability in the Map search functionality in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspe… |
| CVE-2014-1994 |
low |
— |
3.5 |
|
|
cybozu |
12y ago |
Cross-site scripting (XSS) vulnerability in the Notices portlet in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified ve… |
| CVE-2014-1992 |
low |
— |
3.5 |
|
|
cybozu |
12y ago |
Cross-site scripting (XSS) vulnerability in the Messages functionality in Cybozu Garoon 3.1.x, 3.5.x, and 3.7.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML… |
| CVE-2014-1988 |
low |
— |
3.5 |
|
|
cybozu |
12y ago |
The Phone Messages feature in Cybozu Garoon 2.0.0 through 3.7 SP2 allows remote authenticated users to cause a denial of service (resource consumption) via unspecified vectors. |
| CVE-2013-6915 |
low |
— |
3.5 |
|
|
cybozu |
13y ago |
Cross-site scripting (XSS) vulnerability in the system-administration component in Cybozu Garoon before 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified … |
| CVE-2013-6914 |
low |
— |
3.5 |
|
|
cybozu |
13y ago |
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon before 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2013-6913 |
low |
— |
3.5 |
|
|
cybozumicrosoft |
13y ago |
Cross-site scripting (XSS) vulnerability in a search component in Cybozu Garoon before 3.7.2, when Internet Explorer is used, allows remote authenticated users to inject arbitrary web script or HTML … |
| CVE-2013-6912 |
low |
— |
3.5 |
|
|
cybozumicrosoft |
13y ago |
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon before 3.7.2, when Internet Explorer 6 through 9 is used, allows remote authenticated users to inject arbitrary web s… |
| CVE-2013-6911 |
low |
— |
3.5 |
|
|
cybozumozillamicrosoft |
13y ago |
Cross-site scripting (XSS) vulnerability in the bulletin-board component in Cybozu Garoon before 3.7.2, when Internet Explorer or Firefox is used, allows remote authenticated users to inject arbitrar… |
| CVE-2013-6003 |
low |
— |
3.5 |
|
|
cybozu |
13y ago |
CRLF injection vulnerability in Cybozu Garoon 3.1 through 3.5 SP5, when Phone Messages forwarding is enabled, allows remote authenticated users to inject arbitrary e-mail headers via unspecified vect… |
| CVE-2013-4698 |
low |
— |
3.5 |
|
|
cybozu |
13y ago |
Cybozu Mailwise 5.0.4 and 5.0.5 allows remote authenticated users to obtain sensitive e-mail content intended for different persons in opportunistic circumstances by reading Subject header lines with… |
