CVE-2026-24672

The Open eClass platform formerly known as GUnet eClass is a complete course management system. Prior to version 4.2, a Stored Cross-Site Scripting XSS vulnerability allows authenticated students to inject malicious JavaScript into user profile fields, which is executed when users with viewing...

CVE-2026-24672

The Open eClass platform formerly known as GUnet eClass is a complete course management system. Prior to version 4.2, a Stored Cross-Site Scripting XSS vulnerability allows authenticated students to inject malicious JavaScript into user profile fields, which is executed when users with viewing...

PDF Viewer Macro 安全漏洞

PDF Viewer Macro is an open source macro for XWiki SAS. It allows viewing PDF files attached to XWiki pages from within the XWiki page. A security vulnerability exists in PDF Viewer Macro prior to version 2.5.6, which stems from the fact that any user with viewing privileges to...

CVE-2022-29512

Exposure of sensitive information to an unauthorized actor issue in multiple applications of Cybozu Garoon 4.0.0 to 5.9.1 allows a remote authenticated attacker to obtain the data without the viewing privilege...

Cybozu Garoon Bulletin Information Disclosure Vulnerability

Cybozu Garoon is a portal-based OA office system of Cybozu Japan. An information disclosure vulnerability exists in Bulletin in Cybozu Garoon. An attacker can use this vulnerability to obtain the title of an announcement without viewing privileges...

Cybozu Garoon 信息泄露漏洞

Cybozu Garoon is a portal-based OA office system of Cybozu Japan. An information disclosure vulnerability exists in Bulletin in Cybozu Garoon. An attacker can use this vulnerability to obtain the title of an announcement without viewing privileges...