Lucene search
+L

158 matches found

CNVD
CNVD
added 2021/08/03 12:0 a.m.16 views

Cybozu Garoon E-mail Incorrect Input Verification Vulnerability

Cybozu Garoon is a portal type OA office system of Cybozu Japan. A security vulnerability exists in e-mail in Cybozu Garoon. The vulnerability can be exploited by an attacker to alter e-mail data without proper privileges...

3.5CVSS4.1AI score0.00752EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/03 12:0 a.m.25 views

Cybozu Garoon Workflow Incorrect Input Validation Vulnerability

A security vulnerability exists in Workflow in Cybozu Garoon, a portal-based OA office system from Cybozu Japan. An attacker can use this vulnerability to change workflow data without proper privileges...

4.3CVSS3.8AI score0.0078EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/03 12:0 a.m.22 views

Cybozu Garoon View Restriction Bypass Vulnerability

Cybozu Garoon is a portal-based OA office system from Cybozu Japan. A view restriction bypass vulnerability exists in the Portal in Cybozu Garoon. An attacker can use this vulnerability to obtain data from the portal without viewing privileges...

4.3CVSS4AI score0.00909EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/03 12:0 a.m.21 views

Cybozu Garoon Portal Operation Restriction Bypass Vulnerability

An operational restriction bypass vulnerability exists in the Portal of Cybozu Garoon, a portal-based OA office system of Cybozu Japan. An attacker can use this vulnerability to change the data of the portal without proper privileges...

4.3CVSS3.1AI score0.00934EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/03 12:0 a.m.16 views

Cybozu Garoon Bulletin Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in Bulletin in Cybozu Garoon, a portal-based OA office system from Cybozu Japan. An attacker can use this vulnerability to execute arbitrary scripts on a logged-in user's Web browser...

6.1CVSS3.4AI score0.008EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/03 12:0 a.m.25 views

Cybozu Garoon Message Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in Message in Cybozu Garoon, a portal-based OA office system from Cybozu Japan. An attacker can use this vulnerability to execute arbitrary scripts on a logged-in user's Web browser...

6.1CVSS3.1AI score0.00757EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/03 12:0 a.m.22 views

Cybozu Garoon User Profile Incorrect Input Validation Vulnerability

A security vulnerability exists in the User Profile of Cybozu Garoon, a portal-based OA office system from Cybozu Japan. An attacker can use this vulnerability to change data in the user profile without proper privileges...

4.3CVSS3.1AI score0.0078EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/03 12:0 a.m.15 views

Cybozu Garoon E-mail Operation Restriction Bypass Vulnerability

An operational restriction bypass vulnerability exists in e-mail in Cybozu Garoon, a portal-based OA office system of Cybozu Japan. An attacker can use this vulnerability to change e-mail data without proper privileges...

4.3CVSS3.5AI score0.00818EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/15 12:0 a.m.14 views

XML Entity Injection Vulnerability in Minz Mobile Office System

Shenyang Mingzhi Software Co., Ltd. is one of the mainstream collaborative management software solution providers in China. An XML entity injection vulnerability exists in the Mingzhi Mobile Office system, which can be exploited by attackers to obtain sensitive information...

7AI score
Exploits0
CNVD
CNVD
added 2021/07/10 12:0 a.m.18 views

Command Execution Vulnerability in Xinhuo OA Office System (CNVD-2021-52069)

Xinhu OA office system is a free and open source office OA system. Xinhao OA Office System has a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/07/06 12:0 a.m.9 views

Unauthorized Access Vulnerability in SINDOH A603_A608 at SINDOH (Qingdao) Office Systems Co.

Xindu Qingdao Office System Co., Ltd. is a professional office equipment enterprise integrating research and development, production, sales and after-sales service. SINDOH A603A608 of SINDOH Qingdao Office Systems Co., Ltd. has an unauthorized access vulnerability, which can be exploited by an...

6.9AI score
Exploits0
CNVD
CNVD
added 2021/07/06 12:0 a.m.25 views

Unauthorized Access Vulnerability in SINDOH A601_A606 at SINDOH (Qingdao) Office Systems Co.

Xindu Qingdao Office System Co., Ltd. is a professional office equipment enterprise integrating research and development, production, sales and after-sales service. SINDOH A601A606 of SINDOH Qingdao Office Systems Co., Ltd. has an unauthorized access vulnerability, which can be exploited by an...

6.9AI score
Exploits0
CNVD
CNVD
added 2021/04/25 12:0 a.m.3 views

File Upload Vulnerability in e-office Panmicro Collaboration Office System

e-cology is a collaborative business platform with enterprise information portal, knowledge management, data center, workflow management, human resource management, customer and partner management, project management, financial management, and asset management functions. A file upload vulnerabili...

7AI score
Exploits0
CNVD
CNVD
added 2021/03/30 12:0 a.m.4 views

File Upload Vulnerability in Flagship Edition of Huatian Power Collaboration Office System

Dalian Huatian Software Co., Ltd. is a high-tech enterprise formed in accordance with the international advanced management mode and system, is a leading technology known as the collaborative management software company, in the collaborative platform, workflow technology and intelligent reporting...

7.4AI score
Exploits0
CNVD
CNVD
added 2021/03/20 12:0 a.m.1 views

Unauthorized access vulnerability in the api interface of the public security office hall system of Jiangsu Ouso Software Co.

Ltd. was registered on July 27, 1998 in Suzhou High-tech Zone Huqiu District Market Supervision Administration. Legal representative Lu Xiaoyan, the company's scope of business includes the development and sale of computer software, system integration, and provide relevant technical support and...

6.9AI score
Exploits0
CNVD
CNVD
added 2021/02/08 12:0 a.m.9 views

RockOA SQL Injection Vulnerability (CNVD-2021-10485)

RockOA Xinhuo is an open source office OA system. Rockoa v1.8.7 version of the existence of SQL injection vulnerability , the vulnerability wwordAction.php parameters in the user input is not effectively filtered , a remote attacker by obtaining the injection of SQL statements to execute access t...

9.8CVSS7.8AI score0.01758EPSS
Exploits1References1
CNVD
CNVD
added 2021/02/08 12:0 a.m.31 views

RockOA SQL Injection Vulnerability (CNVD-2021-10484)

RockOA Xinhuo is an open source office OA system. Rockoa v1.8.7 version of the existence of SQL injection vulnerability , the vulnerability wordModel.php parameters in the user input is not effectively filtered , a remote attacker through the injection of SQL statements to execute the acquisition...

9.8CVSS7.8AI score0.01317EPSS
Exploits1References1
CNVD
CNVD
added 2020/12/28 12:0 a.m.3 views

SQL Injection Vulnerability in Panmicro Collaboration Office System (CNVD-2021-01375)

Ltd. was founded in 2001, headquartered in Shanghai, focusing on the field of collaborative management software, and is committed to collaborative OA as the core to help enterprises build a unified mobile office platform. A SQL injection vulnerability exists in Panmicro's collaborative office...

7.5AI score
Exploits0
CNVD
CNVD
added 2020/11/10 12:0 a.m.1 views

Arbitrary File Read Vulnerability in Xinhoo OA Office System fi***.php File

Xinhu OA office system is an open source online office system. Xinhao OA office system fi.php file contains arbitrary file reading vulnerability. An attacker can use this vulnerability to download arbitrary files and obtain sensitive information...

7AI score
Exploits0
CNVD
CNVD
added 2020/10/13 12:0 a.m.1 views

XML Entity Injection Vulnerability in Panmicro e-cology

Panmicro e-cology is an OA office system made for large and medium-sized enterprises, supporting PC, mobile and WeChat simultaneous office and so on. An XML entity injection vulnerability exists in Panmicro e-cology. An attacker can exploit this vulnerability to obtain sensitive information...

7.3AI score
Exploits0
Rows per page
Query Builder