Page 18 of 88 results (0.008 seconds)

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

Cybozu Garoon 3.5.0 to 4.6.1 allows remote authenticated attackers to bypass access restriction to view the closed title of "Cabinet" via unspecified vectors. Cybozu Garoon, de la versión 3.5.0 a la 4.6.1, permite que los atacantes remotos autenticados omitan las restricciones de acceso para ver el título cerrado de "Space" mediante vectores sin especificar. • http://jvn.jp/en/jp/JVN65268217/index.html https://support.cybozu.com/ja-jp/article/10056 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Cybozu Garoon 4.0.0 to 4.6.0 allows remote authenticated attackers to bypass access restriction to view the closed title of "Space" via unspecified vectors. Cybozu Garoon, de la versión 4.0.0 a la 4.6.0, permite que los atacantes remotos autenticados omitan las restricciones de acceso para ver el título cerrado de "Space" mediante vectores sin especificar. • http://jvn.jp/en/jp/JVN65268217/index.html https://support.cybozu.com/ja-jp/article/9886 •

CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0

Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.6.1 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad Cross-Site Scripting (XSS) en Cybozu Garoon, de la versión 3.0.0 a la 4.6.1, permite que atacantes remotos autenticados inyecte scripts web o HTML arbitrarios mediante vectores sin especificar. • http://jvn.jp/en/jp/JVN65268217/index.html https://support.cybozu.com/ja-jp/article/10211 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •