|
249591
|
6.3 |
MEDIUM
Network
|
cybozu
|
office
|
Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to bypass access restriction to access and write non-public data via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2018-0567
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249592
|
4.3 |
MEDIUM
Network
|
cybozu
|
office
|
Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to bypass authentication to obtain the schedules without access privilege via unspecified vectors.
|
CWE-269
Improper Privilege Management
|
CVE-2018-0566
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249593
|
6.1 |
MEDIUM
Network
|
cybozu
|
office
|
Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0565
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249594
|
7.8 |
HIGH
Local
|
ntt-east
|
flet\'s_virus_clear_v6_easy_setup_\&_application_tool
flet\'s_virus_clear_easy_setup_\&_application_tool
|
Untrusted search path vulnerability in the installer of FLET'S VIRUS CLEAR Easy Setup & Application Tool ver.13.0 and earlier versions and FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool ver.13.0…
|
CWE-426
Untrusted Search Path
|
CVE-2018-0563
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249595
|
6.1 |
MEDIUM
Network
|
cybozu
|
mailwise
|
Cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'Address' via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0559
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249596
|
6.1 |
MEDIUM
Network
|
cybozu
|
mailwise
|
Reflected cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML in 'System settings' via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0558
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249597
|
6.1 |
MEDIUM
Network
|
cybozu
|
mailwise
|
Stored cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'E-mail Details Screen' via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0557
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249598
|
4.3 |
MEDIUM
Network
|
cybozu
|
office
|
Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to cause a denial of service via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2018-0529
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249599
|
4.3 |
MEDIUM
Network
|
cybozu
|
office
|
Cybozu Office 10.0.0 to 10.7.0 allows authenticated attackers to bypass authentication to view the schedules that are not permitted to access via unspecified vectors.
|
CWE-287
CWE-200
Improper Authentication
Information Exposure
|
CVE-2018-0528
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249600
|
6.1 |
MEDIUM
Network
|
cybozu
|
office
|
Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0527
|
2024-11-21 12:38 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
