Product:

Garoon

(Cybozu)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 190
Date Id Summary Products Score Patch Annotated
2017-04-20 CVE-2016-1218 SQL injection vulnerability in Cybozu Garoon before 4.2.2. Garoon 8.8
2017-04-20 CVE-2016-1217 Cross-site scripting (XSS) vulnerability in the "Check available times" function in Cybozu Garoon before 4.2.2. Garoon 6.1
2017-04-20 CVE-2016-1216 Cross-site scripting (XSS) vulnerability in the "New appointment" function in Cybozu Garoon before 4.2.2. Garoon 6.1
2017-04-20 CVE-2016-1215 Cross-site scripting (XSS) vulnerability in the "User details" function in Cybozu Garoon before 4.2.2. Garoon 6.1
2017-04-20 CVE-2016-1214 Cross-site scripting (XSS) vulnerability in the "Response request" function in Cybozu Garoon before 4.2.2. Garoon 6.1
2017-04-20 CVE-2016-1213 The "Scheduler" function in Cybozu Garoon before 4.2.2 allows remote attackers to redirect users to arbitrary websites. Garoon 6.1
2016-06-19 CVE-2016-1197 Cross-site scripting (XSS) vulnerability in Cybozu Garoon 4.x before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-7775. Garoon 6.1
2016-06-19 CVE-2016-1196 Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to bypass intended access restrictions and obtain sensitive Address Book information via an API call, a different vulnerability than CVE-2015-7776. Garoon 4.3
2016-06-19 CVE-2016-1195 Open redirect vulnerability in Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL. Garoon 7.4
2017-04-21 CVE-2016-1194 Cybozu Garoon before 4.2.1 allows remote attackers to cause a denial of service. Garoon 6.5