Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2025/08/21 5:15 a.m.1 views

CVE-2025-53505

Group-Office versions prior to 6.8.119 and prior to 25.0.20 provided by Intermesh BV contain a path traversal vulnerability. If this vulnerability is exploited, information on the server hosting the product may be exposed...

5.3CVSS6.7AI score
Exploits0References2
CNNVD
CNNVDadded 2025/05/22 12:0 a.m.1 views

Intermesh BV Group Office CRM 安全漏洞

Intermesh BV Group Office CRM is an application from Intermesh BV. Share projects, calendars, files and emails online with colleagues and clients. Easy to use and fully customizable. A security vulnerability exists in Intermesh BV Group Office CRM versions prior to 6.8.119 and 25.0.20, which stem...

6.3CVSS6AI score0.0014EPSS
Exploits1References1
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2024/02/01 12:0 a.m.15 views

JVN#63567545: Group Office vulnerable to cross-site scripting

Group Office provided by Intermesh BV contains a stored cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the web browser of the user who is logging in to the product. Solution Update the Application Update the application to the latest version according to...

5.4CVSS5.2AI score0.00202EPSS
Exploits0
NVD
NVDadded 2023/04/27 1:15 a.m.7 views

CVE-2023-25292

Reflected Cross Site Scripting XSS in Intermesh BV Group-Office version 6.6.145, allows attackers to gain escalated privileges and gain sensitive information via the GOLANGUAGE cookie...

6.1CVSS6.2AI score0.0041EPSS
Exploits2References3
Prion
Prionadded 2023/04/27 1:15 a.m.13 views

Cross site scripting

Reflected Cross Site Scripting XSS in Intermesh BV Group-Office version 6.6.145, allows attackers to gain escalated privileges and gain sensitive information via the GOLANGUAGE cookie...

5.8CVSS6.2AI score0.0041EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichmentadded 2023/04/27 12:0 a.m.10 views

CVE-2023-25292

Reflected Cross Site Scripting XSS in Intermesh BV Group-Office version 6.6.145, allows attackers to gain escalated privileges and gain sensitive information via the GOLANGUAGE cookie...

6.2AI score0.0041EPSS
Exploits2References3
Cvelist
Cvelistadded 2023/04/27 12:0 a.m.15 views

CVE-2023-25292

Reflected Cross Site Scripting XSS in Intermesh BV Group-Office version 6.6.145, allows attackers to gain escalated privileges and gain sensitive information via the GOLANGUAGE cookie...

6.4AI score0.0041EPSS
Exploits2References3
CVE
CVEadded 2023/04/27 12:0 a.m.43 views

CVE-2023-25292

Group-Office (Intermesh BV) has a Reflected XSS in version 6.6.145 where the GO_LANGUAGE cookie can be manipulated to inject script, potentially exposing sensitive data and enabling privilege escalation. Root cause: improper handling/encoding of the GO_LANGUAGE cookie leads to reflected script in...

6.1CVSS6.1AI score0.0041EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder