Vulnerabilities > Cybozu > Cybozu Live > 1.0.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-06-18 | CVE-2013-3647 | Information Exposure vulnerability in Cybozu Live 1.0.4/2.0.0 The WebView class in the Cybozu Live application before 2.0.1 for Android allows attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. | 6.8 |
2013-06-18 | CVE-2013-3646 | Code vulnerability in Cybozu Live 1.0.4/2.0.0 The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. | 6.8 |
2012-08-31 | CVE-2012-4009 | Code Injection vulnerability in Cybozu Live 1.0.4 The WebView class in the Cybozu Live application 1.0.4 and earlier for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. | 6.8 |
2012-08-31 | CVE-2012-4008 | Code Injection vulnerability in Cybozu Live 1.0.4 The Cybozu Live application 1.0.4 and earlier for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. | 6.8 |