Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27926 of 28111

CVE-2016-4866

Posted by Cyberthreat Blog | Apr 17, 2017 | CVE Notifications |

Cross-site scripting (XSS) vulnerability in the “Project” function in Cybozu Office 9.0.0 through 10.4.0.

CVE-2016-4872

Posted by Cyberthreat Blog | Apr 17, 2017 | CVE Notifications |

The “breadcrumb trail” component in Cybozu Office 9.0.0 through 10.4.0 allows remote authenticated users to read the names of closed projects.

CVE-2016-4873

Posted by Cyberthreat Blog | Apr 17, 2017 | CVE Notifications |

The “Project” function in Cybozu Office 9.0.0 through 10.4.0 does not properly check access permissions, which allows remote authenticated users to alter project information.

CVE-2016-4865

Posted by Cyberthreat Blog | Apr 17, 2017 | CVE Notifications |

Cross-site scripting (XSS) vulnerability in the “Customapp” function in Cybozu Office 9.0.0 through 10.4.0.

CVE-2016-4874

Posted by Cyberthreat Blog | Apr 17, 2017 | CVE Notifications |

Cybozu Office 9.0.0 through 10.4.0 allows remote attackers to conduct a “reflected file download” attack.

Author: Cyberthreat Blog

CVE-2016-4866

CVE-2016-4872

CVE-2016-4873

CVE-2016-4865

CVE-2016-4874