158 matches found
Cybozu Garoon E-mail Incorrect Input Verification Vulnerability
Cybozu Garoon is a portal type OA office system of Cybozu Japan. A security vulnerability exists in e-mail in Cybozu Garoon. The vulnerability can be exploited by an attacker to alter e-mail data without proper privileges...
Cybozu Garoon Workflow Incorrect Input Validation Vulnerability
A security vulnerability exists in Workflow in Cybozu Garoon, a portal-based OA office system from Cybozu Japan. An attacker can use this vulnerability to change workflow data without proper privileges...
Cybozu Garoon View Restriction Bypass Vulnerability
Cybozu Garoon is a portal-based OA office system from Cybozu Japan. A view restriction bypass vulnerability exists in the Portal in Cybozu Garoon. An attacker can use this vulnerability to obtain data from the portal without viewing privileges...
Cybozu Garoon Portal Operation Restriction Bypass Vulnerability
An operational restriction bypass vulnerability exists in the Portal of Cybozu Garoon, a portal-based OA office system of Cybozu Japan. An attacker can use this vulnerability to change the data of the portal without proper privileges...
Cybozu Garoon Bulletin Cross-Site Scripting Vulnerability
A cross-site scripting vulnerability exists in Bulletin in Cybozu Garoon, a portal-based OA office system from Cybozu Japan. An attacker can use this vulnerability to execute arbitrary scripts on a logged-in user's Web browser...
Cybozu Garoon Message Cross-Site Scripting Vulnerability
A cross-site scripting vulnerability exists in Message in Cybozu Garoon, a portal-based OA office system from Cybozu Japan. An attacker can use this vulnerability to execute arbitrary scripts on a logged-in user's Web browser...
Cybozu Garoon User Profile Incorrect Input Validation Vulnerability
A security vulnerability exists in the User Profile of Cybozu Garoon, a portal-based OA office system from Cybozu Japan. An attacker can use this vulnerability to change data in the user profile without proper privileges...
Cybozu Garoon E-mail Operation Restriction Bypass Vulnerability
An operational restriction bypass vulnerability exists in e-mail in Cybozu Garoon, a portal-based OA office system of Cybozu Japan. An attacker can use this vulnerability to change e-mail data without proper privileges...
XML Entity Injection Vulnerability in Minz Mobile Office System
Shenyang Mingzhi Software Co., Ltd. is one of the mainstream collaborative management software solution providers in China. An XML entity injection vulnerability exists in the Mingzhi Mobile Office system, which can be exploited by attackers to obtain sensitive information...
Command Execution Vulnerability in Xinhuo OA Office System (CNVD-2021-52069)
Xinhu OA office system is a free and open source office OA system. Xinhao OA Office System has a command execution vulnerability that can be exploited by an attacker to gain control of the server...
Unauthorized Access Vulnerability in SINDOH A603_A608 at SINDOH (Qingdao) Office Systems Co.
Xindu Qingdao Office System Co., Ltd. is a professional office equipment enterprise integrating research and development, production, sales and after-sales service. SINDOH A603A608 of SINDOH Qingdao Office Systems Co., Ltd. has an unauthorized access vulnerability, which can be exploited by an...
Unauthorized Access Vulnerability in SINDOH A601_A606 at SINDOH (Qingdao) Office Systems Co.
Xindu Qingdao Office System Co., Ltd. is a professional office equipment enterprise integrating research and development, production, sales and after-sales service. SINDOH A601A606 of SINDOH Qingdao Office Systems Co., Ltd. has an unauthorized access vulnerability, which can be exploited by an...
File Upload Vulnerability in e-office Panmicro Collaboration Office System
e-cology is a collaborative business platform with enterprise information portal, knowledge management, data center, workflow management, human resource management, customer and partner management, project management, financial management, and asset management functions. A file upload vulnerabili...
File Upload Vulnerability in Flagship Edition of Huatian Power Collaboration Office System
Dalian Huatian Software Co., Ltd. is a high-tech enterprise formed in accordance with the international advanced management mode and system, is a leading technology known as the collaborative management software company, in the collaborative platform, workflow technology and intelligent reporting...
Unauthorized access vulnerability in the api interface of the public security office hall system of Jiangsu Ouso Software Co.
Ltd. was registered on July 27, 1998 in Suzhou High-tech Zone Huqiu District Market Supervision Administration. Legal representative Lu Xiaoyan, the company's scope of business includes the development and sale of computer software, system integration, and provide relevant technical support and...
RockOA SQL Injection Vulnerability (CNVD-2021-10485)
RockOA Xinhuo is an open source office OA system. Rockoa v1.8.7 version of the existence of SQL injection vulnerability , the vulnerability wwordAction.php parameters in the user input is not effectively filtered , a remote attacker by obtaining the injection of SQL statements to execute access t...
RockOA SQL Injection Vulnerability (CNVD-2021-10484)
RockOA Xinhuo is an open source office OA system. Rockoa v1.8.7 version of the existence of SQL injection vulnerability , the vulnerability wordModel.php parameters in the user input is not effectively filtered , a remote attacker through the injection of SQL statements to execute the acquisition...
SQL Injection Vulnerability in Panmicro Collaboration Office System (CNVD-2021-01375)
Ltd. was founded in 2001, headquartered in Shanghai, focusing on the field of collaborative management software, and is committed to collaborative OA as the core to help enterprises build a unified mobile office platform. A SQL injection vulnerability exists in Panmicro's collaborative office...
Arbitrary File Read Vulnerability in Xinhoo OA Office System fi***.php File
Xinhu OA office system is an open source online office system. Xinhao OA office system fi.php file contains arbitrary file reading vulnerability. An attacker can use this vulnerability to download arbitrary files and obtain sensitive information...
XML Entity Injection Vulnerability in Panmicro e-cology
Panmicro e-cology is an OA office system made for large and medium-sized enterprises, supporting PC, mobile and WeChat simultaneous office and so on. An XML entity injection vulnerability exists in Panmicro e-cology. An attacker can exploit this vulnerability to obtain sensitive information...