Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

15 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-4438

Malware in sbrugna...

9.1CVSS8.3AI score0.02232EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-41319

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00844EPSS
Exploits2References6
RedhatCVE
RedhatCVEadded 2025/05/22 9:49 p.m.6 views

CVE-2022-38756

A vulnerability has been identified in Micro Focus GroupWise Web in versions prior to 18.4.2. The GW Web component makes a request to the Post Office Agent that contains sensitive information in the query parameters that could be logged by any intervening HTTP proxies...

4.3CVSS6.3AI score0.00844EPSS
Exploits2References1
0day.today
0day.todayadded 2023/01/30 12:0 a.m.254 views

Micro Focus GroupWise Session ID Disclosure Vulnerability

Micro Focus GroupWise is a messaging software for email and personal information management. Trovent Security GmbH discovered that the GroupWise web application transmits the session ID in HTTP GET requests in the URL when email content is accessed. The exposed session ID can be recorded in the...

4.3CVSS4.7AI score0.00844EPSS
Exploits2
Packet Storm
Packet Stormadded 2023/01/27 12:0 a.m.289 views

Micro Focus GroupWise Session ID Disclosure

Trovent Security Advisory 2203-01 Micro Focus GroupWise transmits session ID in URL Overview Advisory ID: TRSA-2203-01 Advisory version: 1.0 Advisory status: Public Advisory URL: https://trovent.io/security-advisory-2203-01 Affected product: Micro Focus GroupWise Affected version: prior to 18.4.2...

4.3CVSS4.8AI score0.00844EPSS
Exploits2
NVD
NVDadded 2022/12/16 11:15 p.m.18 views

CVE-2022-38756

A vulnerability has been identified in Micro Focus GroupWise Web in versions prior to 18.4.2. The GW Web component makes a request to the Post Office Agent that contains sensitive information in the query parameters that could be logged by any intervening HTTP proxies...

4.3CVSS0.00844EPSS
Exploits2References5
Prion
Prionadded 2022/12/16 11:15 p.m.18 views

Design/Logic Flaw

A vulnerability has been identified in Micro Focus GroupWise Web in versions prior to 18.4.2. The GW Web component makes a request to the Post Office Agent that contains sensitive information in the query parameters that could be logged by any intervening HTTP proxies...

4.3CVSS4.4AI score0.00844EPSS
Exploits2References3Affected Software1
Positive Technologies
Positive Technologiesadded 2022/12/16 12:0 a.m.3 views

PT-2022-24554 · Micro Focus · Micro Focus Groupwise Web

Name of the Vulnerable Software and Affected Versions: Micro Focus GroupWise Web versions prior to 18.4.2 Description: A vulnerability has been identified in the GW Web component, which makes a request to the Post Office Agent containing sensitive information in the query parameters. This sensiti...

4.3CVSS4.3AI score0.00844EPSS
Exploits2References9
NVD
NVDadded 2018/08/01 8:29 p.m.14 views

CVE-2018-12468

A vulnerability in the administration console of Micro Focus GroupWise prior to version 18.0.2 may allow a remote attacker authenticated as an administrator to upload files to an arbitrary path on the server. In certain circumstances this could result in remote code execution...

9.1CVSS9.5AI score0.02232EPSS
Exploits0References1
Cvelist
Cvelistadded 2018/08/01 8:0 p.m.16 views

CVE-2018-12468 Arbitrary File Upload in GroupWise Administration Console

A vulnerability in the administration console of Micro Focus GroupWise prior to version 18.0.2 may allow a remote attacker authenticated as an administrator to upload files to an arbitrary path on the server. In certain circumstances this could result in remote code execution...

9.1CVSS9.4AI score0.02232EPSS
Exploits0References1
CVE
CVEadded 2018/08/01 8:0 p.m.45 views

CVE-2018-12468

The vulnerability CVE-2018-12468 affects Micro Focus GroupWise prior to version 18.0.2, specifically the administration console. A remote attacker authenticated as an administrator can upload files to an arbitrary server path, which in certain circumstances could enable remote code execution. Doc...

9.1CVSS7.5AI score0.02232EPSS
Exploits0References1Affected Software1
Check Point Advisories
Check Point Advisoriesadded 2016/11/03 12:0 a.m.1 views

Novell Micro Focus GroupWise Multiple Cross Site Scripting (CVE-2016-5760)

A cross-site scripting vulnerability has been reported in the administrator console of Micro Focus GroupWise. The vulnerability is due to failure to properly sanitize user-supplied input. A remote attacker can exploit this vulnerability by enticing a target user to click on a specially crafted UR...

4.3CVSS1.5AI score0.01265EPSS
Exploits1
Check Point Advisories
Check Point Advisoriesadded 2016/11/03 12:0 a.m.3 views

Novell Micro Focus GroupWise Multiple Cross Site Scripting (CVE-2016-5760)

A cross-site scripting vulnerability has been reported in the administrator console of Micro Focus GroupWise. The vulnerability is due to failure to properly sanitize user-supplied input. A remote attacker can exploit this vulnerability by enticing a target user to click on a specially crafted UR...

4.3CVSS1.5AI score0.01265EPSS
Exploits1
Check Point Advisories
Check Point Advisoriesadded 2016/09/13 12:0 a.m.3 views

Micro Focus GroupWise Post Office Agent Integer Overflow (CVE-2016-5762)

An integer overflow vulnerability leading to a heap-based buffer overflow exists in the Post Office Agent component of Micro Focus GroupWise. The vulnerability is due to insufficient validation of usernames and passwords submitted to the Post Office Agent. A successful attack could result in...

7.5CVSS3.2AI score0.05726EPSS
Exploits1
Packet Storm
Packet Stormadded 2016/08/25 12:0 a.m.82 views

Micro Focus GroupWise Cross Site Scripting / Overflows

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: Micro Focus GroupWise vulnerable version: GroupWise 2014 R2 =SP1 GroupWise 2014 unsupported versions may be affected fixed version:...

0.5AI score0.05726EPSS
Exploits1
Rows per page
Query Builder