Vulnerabilities > Egroupware > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-07-07 CVE-2024-40614 Unspecified vulnerability in Egroupware
EGroupware before 23.1.20240624 mishandles an ORDER BY clause.
network
low complexity
egroupware
critical
 9.8
9.8
2008-04-30 CVE-2008-2041 Code Injection vulnerability in Egroupware 1.4.001/1.4.002
Multiple unspecified vulnerabilities in eGroupWare before 1.4.004 have unspecified attack vectors and "grave" impact when the web server has write access to a directory under the web document root.
network
low complexity
egroupware CWE-94
critical
 10.0
10
2007-06-11 CVE-2007-3155 Multiple Unspecified vulnerability in EGroupWare WZ_ToolTips ADODB
Unspecified vulnerability in eGroupWare before 1.2.107-2 has unknown impact and attack vectors related to ADOdb.
network
low complexity
egroupware
critical
 10.0
10
2007-06-11 CVE-2007-3154 Multiple Unspecified vulnerability in EGroupWare WZ_ToolTips ADODB
Unspecified vulnerability in Walter Zorn wz_tooltip.js (aka wz_tooltips) before 4.01, as used by eGroupWare before 1.2.107-2 and other packages, has unknown impact and remote attack vectors.
network
low complexity
egroupware
critical
 10.0
10