CPE-DBC4EFF4-9E75-486B-99B5-87AB8783EB66 Detail

CPE Details

Novell GroupWise WebAccess 6.5

Vendor

novell

Product

groupwise_webaccess

Version

6.5

Created

2007-08-23
19h16 +00:00

Modified

2007-09-14
15h36 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:novell:groupwise_webaccess:6.5:::::::*

Informations

Vendor

novell

Product

groupwise_webaccess

Version

6.5

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score
CVE-2006-4220	2008-02-05 10h00 +00:00	Multiple cross-site scripting (XSS) vulnerabilities in webacc in Novell GroupWise WebAccess before 7 Support Pack 3 Public Beta allow remote attackers to inject arbitrary web script or HTML via the (1) User.html, (2) Error, (3) User.Theme.index, and (4) and User.lang parameters.	4.3
CVE-2007-4557	2007-08-28 01h00 +00:00	Cross-site scripting (XSS) vulnerability in the webacc servlet in Novell GroupWise 6.5 WebAccess allows remote attackers to inject arbitrary web script or HTML via the User.Id parameter, as demonstrated by a URL within a url field in a STYLE element, possibly due to an incomplete fix for CVE-2004-2103.2.	4.3
CVE-2006-3817	2006-08-11 08h00 +00:00	Cross-site scripting (XSS) vulnerability in Novell GroupWise WebAccess 6.5 and 7 before 20060727 allows remote attackers to inject arbitrary web script or HTML via an encoded SCRIPT element in an e-mail message with the UTF-7 character set, as demonstrated by the "+ADw-SCRIPT+AD4-" sequence.	4.3
CVE-2006-3818	2006-08-11 08h00 +00:00	Cross-site scripting (XSS) vulnerability in the login page in Novell GroupWise WebAccess 6.5 before 20060721 and WebAccess 7 before 20060727 allows remote attackers to inject arbitrary web script or HTML via the GWAP.version parameter.	4.3
CVE-2005-2276	2005-07-26 02h00 +00:00	Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote attackers to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.	4.3
CVE-2005-0296	2005-02-10 04h00 +00:00	NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as the version, via an incorrect login and a modified (1) error or (2) modify parameter that returns template files or the "about" information page. NOTE: the vendor has disputed this issue	5

Novell GroupWise WebAccess 6.5

CPE Details

CPE Name: cpe:2.3:a:novell:groupwise_webaccess:6.5:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:novell:groupwise_webaccess:6.5:::::::*