Cybozu

Office

71 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.4

CVE-2015-8483

  • EPSS 0.27%
  • Veröffentlicht 17.02.2016 02:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Open redirect vulnerability in Cybozu Office 10.2.0 through 10.3.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.

6.1

CVE-2015-7798

  • EPSS 0.52%
  • Veröffentlicht 17.02.2016 02:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-7795, CVE-2015-7796, CVE-2015-7797, CVE-201...

6.1

CVE-2015-7797

  • EPSS 0.52%
  • Veröffentlicht 17.02.2016 02:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-7795, CVE-2015-7796, CVE-2015-7798, CVE-201...

6.1

CVE-2015-7796

  • EPSS 0.52%
  • Veröffentlicht 17.02.2016 02:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-7795, CVE-2015-7797, CVE-2015-7798, CVE-201...

6.1

CVE-2015-7795

  • EPSS 0.52%
  • Veröffentlicht 17.02.2016 02:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-7796, CVE-2015-7797, CVE-2015-7798, CVE-201...

9

CVE-2014-5314

  • EPSS 6.1%
  • Veröffentlicht 24.11.2014 02:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in Cybozu Office 9 and 10 before 10.1.0, Mailwise 4 and 5 before 5.1.4, and Dezie 8 before 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages.

4.3

CVE-2013-4703

  • EPSS 0.3%
  • Veröffentlicht 10.09.2013 11:28:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the top-page customization feature in Cybozu Office before 9.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

5.5

CVE-2011-2677

  • EPSS 0.32%
  • Veröffentlicht 21.10.2011 18:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cybozu Office before 8.0.0 allows remote authenticated users to bypass intended access restrictions and access sensitive information (time card and attendance) via unspecified vectors related to manipulation of a URL.

4.3

CVE-2011-1335

  • EPSS 0.52%
  • Veröffentlicht 29.06.2011 17:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Cybozu Office 6, 7, and 8 before 8.1.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to the "address book and user list functions."

4.3

CVE-2011-1333

  • EPSS 0.52%
  • Veröffentlicht 29.06.2011 17:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Cybozu Office 6 and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the bulletin board system."