4 matches found
CVE-2022-33151
creationtimestamp| type| source ---|---|--- 2022-08-18 12:41:33+00:00| seen| https://t.me/cibsecurity/48346...
CVE-2022-33151
Cybozu Office (Cybozu, Inc.) has a Cross-site scripting (CWE-79) vulnerability CVE-2022-33151 affecting versions 10.0.0 through 10.8.5. The issue is described as an XSS in specific parameters that can allow a remote attacker to cause arbitrary script execution in a victim’s browser via unspecifie...
JVN#20573662: Multiple vulnerabilities in Cybozu Office
Cybozu Office provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-839CyVDB-2300CyVDB-3109 Browse restriction bypass vulnerability in Cabinet CWE-284 - CVE-2022-32283 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N| Base Score: 4....
CScms SQL Injection Vulnerability (CNVD-2022-33151)
CScms is a Content Management System CMS developed based on the CI framework.Cscms Music Portal System v4.2 is vulnerable to SQL injection, which can be exploited by attackers via the component newsNews.phphy...