Japan Total System多款产品 跨站脚本漏洞

Japan Total System GroupSession Free edition and others are an enterprise collaboration software from Japan Total System, Inc. A cross-site scripting vulnerability exists in various Japan Total System products, which stems from a stored cross-site scripting vulnerability that could result in...

Japan Total System多款产品 跨站请求伪造漏洞

Japan Total System GroupSession Free edition and others are an enterprise collaboration software from Japan Total System, Inc. A cross-site request forgery vulnerability exists in various Japan Total System products, which stems from a cross-site request forgery issue that could lead to the...

Japan Total System多款产品 跨站脚本漏洞

Japan Total System GroupSession Free edition and others are an enterprise collaboration software from Japan Total System, Inc. A cross-site scripting vulnerability exists in various Japan Total System products, which stems from a stored cross-site scripting issue that could lead to arbitrary scri...

Japan Total System GroupSession 输入验证错误漏洞

Japan Total System GroupSession is a groupware project from Japan Total System to facilitate communication in businesses and organizations, designed to promote information sharing. A security vulnerability exists in GroupSession, which can be exploited by an attacker to access arbitrary files on...

Japan Total System GroupSession 路径遍历漏洞

Japan Total System GroupSession is a groupware project from Japan Total System, Inc. that facilitates business and organizational communication and is designed to promote information sharing. A path traversal vulnerability exists in GroupSession, which arises when a network system or product fail...

JVN#79798166: Multiple vulnerabilities in GroupSession

GroupSession provided by Japan Total System Co.,Ltd. contains multiple vulnerabilities listed below. Incorrect Permission Assignment for Critical Resource CWE-732 - CVE-2021-20874 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N| Base Score: 7.5 CVSS v2|...

Japan Total System GroupSession 输入验证错误漏洞

Japan Total System GroupSession is a groupware project from Japan Total System, Inc. that facilitates business and organizational communication and is designed to promote information sharing. An input validation error vulnerability exists in Total System GroupSession that could allow a remote...

Japan Total System GroupSession 跨站脚本漏洞

Japan Total System GroupSession is a groupware project from Japan Total System, Inc. that facilitates business and organizational communication and is designed to promote information sharing. A cross-site scripting vulnerability exists in Total System GroupSession, which can be triggered by an...

Japan Total System GroupSession 跨站请求伪造漏洞

Japan Total System GroupSession is a groupware project from Japan Total System, Inc. that facilitates business and organizational communication and is designed to promote information sharing. A cross-site request forgery vulnerability exists in Total System GroupSession, where product settings...

Japan Total System GroupSession 代码问题漏洞

Japan Total System GroupSession is a groupware project from Japan Total System, Inc. that facilitates business and organizational communication and is designed to promote information sharing. Total System GroupSession is vulnerable to a code issue that could allow a user with access to the softwa...

Japan Total System GroupSession Open Redirect Vulnerability

Japan Total System GroupSession is a groupware project by Japan Total System JTS to facilitate communication among companies and organizations, aiming to promote information sharing. An open redirection vulnerability exists in Japan Total System GroupSession 4.7.0 and earlier versions. An attacke...

JVN#26200083: GroupSession vulnerable to open redirect

GroupSession provided by Japan Total System Co.,Ltd. is an open source groupware. GroupSession contains an open redirect vulnerability CWE-601. Impact When accessing a specially crafted page, the user may be redirected to an arbitrary website. As a result, the user may become a victim of a phishi...

Japan Total System GroupSession Unrestricted Access Vulnerability

Japan Total System GroupSession is a groupware project by Japan Total System JTS to facilitate communication among companies and organizations, aiming to promote information sharing. A security vulnerability exists in JTS GroupSession 4.6.4 and earlier versions, which stems from the program's...

JVN#42164352: GroupSession fails to restrict access permissions

GroupSession provided by Japan Total System Co.,Ltd. is open source groupware. GroupSession fails to restrict access permissions. Impact An authenticated attacker may obtain other user's senisitive information such as email. Solution Update the Software Update to the latest version according to t...