Directory traversal vulnerability in Cybozu Dezie 8.0.2 to 8.1.2 allows remote attackers to read arbitrary files via HTTP requests.
Max CVSS
9.1
EPSS Score
0.35%
Published
2019-01-09
Updated
2019-01-15
Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to delete an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.
Max CVSS
7.5
EPSS Score
0.22%
Published
2017-06-09
Updated
2017-06-14
Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to obtain an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.
Max CVSS
5.3
EPSS Score
0.16%
Published
2017-06-09
Updated
2017-06-14
Buffer overflow in Cybozu Office 9 and 10 before 10.1.0, Mailwise 4 and 5 before 5.1.4, and Dezie 8 before 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages.
Max CVSS
9.0
EPSS Score
4.88%
Published
2014-11-24
Updated
2014-12-30
Cross-site scripting (XSS) vulnerability in Cybozu Dezie before 8.1.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Cancel button.
Max CVSS
4.3
EPSS Score
0.25%
Published
2013-12-13
Updated
2017-08-29
Cross-site scripting (XSS) vulnerability in Cybozu Office 6, Cybozu Garoon 2.0.0 through 2.1.3, Cybozu Dezie before 6.1, Cybozu MailWise before 3.1, and Cybozu Collaborex before 1.5 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the mail system."
Max CVSS
4.3
EPSS Score
0.17%
Published
2011-06-29
Updated
2011-06-30
6 vulnerabilities found