13 matches found
EUVD-2026-14269
SOGo before 5.12.5 does not renew the OTP if a user disables/enables it, and has a too short length only 12 digits instead of the 20 recommended...
UBUNTU-CVE-2026-33550
SOGo before 5.12.5 does not renew the OTP if a user disables/enables it, and has a too short length only 12 digits instead of the 20 recommended...
EUVD-2004-0752
Malware in sbrugna...
CVE-2009-3172
Unspecified vulnerability in Hitachi Groupmax Groupware Server 07-00 through 07-50-/A, Groupmax Server Set 03-00 through 06-52, Groupware Server Set 03-00 through 06-52, and Scheduler Server Set 03-00 through 06-52 has unknown impact and attack vectors related to invalid access rights...
CVE-2009-3172
Unspecified vulnerability in Hitachi Groupmax Groupware Server 07-00 through 07-50-/A, Groupmax Server Set 03-00 through 06-52, Groupware Server Set 03-00 through 06-52, and Scheduler Server Set 03-00 through 06-52 has unknown impact and attack vectors related to invalid access rights...
Design/Logic Flaw
Unspecified vulnerability in Hitachi Groupmax Groupware Server 07-00 through 07-50-/A, Groupmax Server Set 03-00 through 06-52, Groupware Server Set 03-00 through 06-52, and Scheduler Server Set 03-00 through 06-52 has unknown impact and attack vectors related to invalid access rights...
CVE-2009-3172
The CVE-2009-3172 entry affects Hitachi Groupmax components (Groupware Server, Server Set 03-00 to 06-52, and Scheduler Server Set 03-00 to 06-52). The connected JVNDB doc describes a vulnerability in Groupmax Scheduler Server where access privilege settings can be rendered invalid, allowing an u...
CVE-2008-4165
admin/user/createuser.php in Kolab Groupware Server 1.0.0 places a user password in an HTTP GET request, which allows local administrators, and possibly remote attackers, to obtain cleartext passwords by reading the sslaccesslog file or the referer string...
CVE-2008-4165
The CVE-2008-4165 entry concerns Kolab Groupware Server 1.0.0. The vulnerable component is admin/user/create_user.php, which places a user password in an HTTP GET request. This allows local administrators and possibly remote attackers to obtain cleartext passwords by inspecting the ssl_access_log...
CVE-2007-4123
The Groupmax SchedulerFacilities management tool in Hitachi Groupmax Groupware Server 07-00-/F through 07-32-/A before 20070731 does not properly manage schedule server configuration data, which might allow attackers to obtain sensitive information via unspecified vectors...
Code injection
The Groupmax SchedulerFacilities management tool in Hitachi Groupmax Groupware Server 07-00-/F through 07-32-/A before 20070731 does not properly manage schedule server configuration data, which might allow attackers to obtain sensitive information via unspecified vectors...
CVE-2007-4123
The Groupmax SchedulerFacilities management tool in Hitachi Groupmax Groupware Server 07-00-/F through 07-32-/A before 20070731 does not properly manage schedule server configuration data, which might allow attackers to obtain sensitive information via unspecified vectors...
CVE-2007-4123
The CVE-2007-4123 entry concerns the Hitachi Groupmax Groupware Server’s Groupmax Scheduler_Facilities management tool. Affected versions are 07-00-/F through 07-32-/A, prior to 20070731. The vulnerability stems from improper handling of schedule server configuration data, which could allow attac...