Vulnerabilities > Soumu > Soumo Workflow

DATE CVE VULNERABILITY TITLE RISK
2006-12-23 CVE-2006-6706 SQL Injection vulnerability in Soumu products
SQL injection vulnerability in Soumu Workflow for Groupmax 01-00 through 01-01, Soumu Workflow 02-00 through 03-03, and Koukyoumuke Soumu Workflow 01-00 through 01-01 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors in certain web pages.
network
low complexity
soumu CWE-89
6.5
6.5
2006-12-23 CVE-2006-6705 Improper Authentication vulnerability in Soumu products
Multiple unspecified vulnerabilities in the template files in Soumu Workflow for Groupmax 01-00 through 01-01, Soumu Workflow 02-00 through 03-03, and Koukyoumuke Soumu Workflow 01-00 through 01-01 allow remote attackers to bypass authentication mechanisms on web pages via unknown vectors.
network
low complexity
soumu CWE-287
5.0
5.0