Vulnerabilities > Cybozu > Mailwise > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-29 | CVE-2020-5572 | Information Exposure vulnerability in Cybozu Mailwise 1.0.1 Android App 'Mailwise for Android' 1.0.0 to 1.0.1 allows an attacker to obtain credential information registered in the product via unspecified vectors. | 4.6 |
| 2018-06-26 | CVE-2018-0559 | Cross-site Scripting vulnerability in Cybozu Mailwise Cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'Address' via unspecified vectors. | 6.1 |
| 2018-06-26 | CVE-2018-0558 | Cross-site Scripting vulnerability in Cybozu Mailwise Reflected cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML in 'System settings' via unspecified vectors. | 6.1 |
| 2018-06-26 | CVE-2018-0557 | Cross-site Scripting vulnerability in Cybozu Mailwise Stored cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'E-mail Details Screen' via unspecified vectors. | 6.1 |
| 2017-04-21 | CVE-2016-4841 | Improper Input Validation vulnerability in Cybozu Mailwise Cybozu Mailwise before 5.4.0 allows remote attackers to inject arbitrary email headers. | 4.3 |
| 2017-04-20 | CVE-2016-4844 | Information Exposure vulnerability in Cybozu Mailwise Cybozu Mailwise before 5.4.0 allows remote attackers to conduct clickjacking attacks. | 4.3 |
| 2017-04-20 | CVE-2016-4843 | Information Exposure vulnerability in Cybozu Mailwise Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive cookie information. | 6.5 |
| 2017-04-20 | CVE-2016-4842 | Information Exposure vulnerability in Cybozu Mailwise Cybozu Mailwise before 5.4.0 allows remote attackers to obtain information on when an email is read. | 4.3 |