Show filters
12 Total Results
Displaying 11-12 of 12
Sort by:
Attacker Value
Unknown

CVE-2009-0272

Disclosure Date: February 02, 2009 (last updated October 04, 2023)
Cross-site request forgery (CSRF) vulnerability in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allows remote attackers to insert e-mail forwarding rules, and modify unspecified other configuration settings, as arbitrary users via unknown vectors.
0
0
Attacker Value
Unknown

CVE-2009-0273

Disclosure Date: February 02, 2009 (last updated October 04, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allow remote attackers to inject arbitrary web script or HTML via the (1) User.id and (2) Library.queryText parameters to gw/webacc, and other vectors involving (3) HTML e-mail and (4) HTML attachments.
0
0
View More Topics  < Previous