5 matches found
EUVD-2016-5852
Malware in sbrugna...
Custom Breadcrumbs - Less critical - Cross Site Scripting - SA-CONTRIB-2022-024
The Custom Breadcrumbs module provides a variety of options for customizing the breadcrumb trail. The module doesn't sufficiently filter on output, leading to a Cross Site Scripting vulnerability. This vulnerability is mitigated by the fact that an attacker must have a role with the permission...
Authentication flaw
Cybozu Office 9.0.0 to 10.4.0 allows remote authenticated attackers to bypass access restrictions to view the names of unauthorized projects via a breadcrumb trail...
CVE-2016-4872
Cybozu Office 9.0.0 to 10.4.0 allows remote authenticated attackers to bypass access restrictions to view the names of unauthorized projects via a breadcrumb trail...
CVE-2016-4872
Cybozu Office versions 9.0.0–10.4.0 contain a breadcrumb-trail based access restrictions bypass (CVE-2016-4872). Remote authenticated attackers can bypass restrictions and view the names of unauthorized projects. This is a user‑capability exposure rather than a full remote execution issue. Mitiga...