Vulnerabilities > Cybozu > Cybozu Live > 1.0.4

DATE CVE VULNERABILITY TITLE RISK
2013-06-18 CVE-2013-3647 Information Exposure vulnerability in Cybozu Live 1.0.4/2.0.0
The WebView class in the Cybozu Live application before 2.0.1 for Android allows attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL.
network
cybozu CWE-200
6.8
6.8
2013-06-18 CVE-2013-3646 Code vulnerability in Cybozu Live 1.0.4/2.0.0
The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site.
network
cybozu CWE-17
6.8
6.8
2012-08-31 CVE-2012-4009 Code Injection vulnerability in Cybozu Live 1.0.4
The WebView class in the Cybozu Live application 1.0.4 and earlier for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL.
network
cybozu CWE-94
6.8
6.8
2012-08-31 CVE-2012-4008 Code Injection vulnerability in Cybozu Live 1.0.4
The Cybozu Live application 1.0.4 and earlier for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site.
network
cybozu CWE-94
6.8
6.8