CVE-2022-33311

Browse restriction bypass vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Address Book via unspecified vectors...

CVE-2017-18523

The eelv-newsletter plugin before 4.6.1 for WordPress has CSRF in the address book...

CVE-2025-43018 Certain HP LaserJet Pro Printers – Potential Information Disclosure

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book...

CVE-2022-46783

An issue was discovered in Stormshield SSL VPN Client before 3.2.0. If multiple address books are used, an attacker may be able to access the other encrypted address book...

The vulnerability of the Address Book URI field in the Thunderbird email client, specifically in Thunderbird ESR, arises from the lack of protection for the website structure. This allows attackers to execute arbitrary JavaScript code.

The vulnerability of the Address Book URI field in the Thunderbird email client, specifically in Thunderbird ESR, is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...

CVE-2025-1015

The Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attacker to create and export an address book containing a malicious payload in a field. For example, in the “Other” field of the Instant Messaging section. If another user imported the address book,...

Multiple vulnerabilities in Cybozu Office

Overview Cybozu Office provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-839CyVDB-2300CyVDB-3109 Browse restriction bypass vulnerability in Cabinet CWE-284 - CVE-2022-32283 CyVDB-1795 Operation restriction bypass vulnerability in Project CWE-285 - CVE-2022-32544...

PT-2022-7705

Name of the Vulnerable Software and Affected Versions Kyocera Net View affected versions not specified Description The issue concerns an insufficiently protected address book export function in Kyocera Net View, which unintentionally exposes sensitive user information, including usernames and...

Multiple vulnerabilities in Cybozu Office

Overview Cybozu Office provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-1657 Operational restrictions bypass vulnerability in Scheduler CWE-264 - CVE-2021-20624 CyVDB-1727 Operational restrictions bypass vulnerability in Bulletin Board CWE-264 - CVE-2021-20625...

CVE-2020-29474

EGavilan Media EGM Address Book 1.0 contains a SQL injection vulnerability. An attacker can gain Admin Panel access using malicious SQL injection queries to perform remote arbitrary code execution...

Update Protection against Microsoft Outlook Express Windows Address Book File Vulnerability (MS06-016)

Microsoft Outlook Express is a commonly used email application. A vulnerability has been discovered in the file which contains the address book of Outlook Express, potentially allowing a malicious attacker to take control of the affected machine...

Проблема с адресной книгой в Outlook Express (address book vulnerability)

Отправив письмо со специальным образом составленного адреса атакующий может получить часть переписки между двумя пользователями...