3 matches found
CVE-2015-5647
The RSS Reader component in Cybozu Garoon 3.x through 3.7.5 and 4.x through 4.0.3 allows remote authenticated users to execute arbitrary PHP code via unspecified vectors, aka CyVDB-866...
CVE-2015-5647
The CVE-2015-5647 entry concerns Cybozu Garoon’s RSS Reader component, which (in Cybozu Garoon 3.x up to 3.7.5 and 4.x up to 4.0.3) is vulnerable to remote authenticated PHP code execution via unspecified vectors (CyVDB-866). The connected records confirm this is a code-injection vulnerability af...
Multiple PHP code execution vulnerabilitles in Cybozu Garoon
Overview Cybozu Garoon is a groupware. Cybozu Garoon contains multiple PHP code execution vulnerabilities. CyVDB-863 Cybozu Garoon allows remote authenticated users to execute arbitrary PHP code, CyVDB-867 Cybozu Garoon allows remote authenticated users to execute arbitrary PHP code CVE-2015-5646...