| Max CVSS | 8.5 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-2987 | 6.8 |
Multiple cross-site request forgery (CSRF) vulnerabilities in EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before 14.1 beta allow remote attackers to hijack the authenticat
|
09-10-2018 - 19:43 | 26-10-2014 - 18:55 | |
| CVE-2014-2988 | 8.5 |
EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before 14.1 beta allows remote authenticated administrators to execute arbitrary PHP code via crafted callback values to the ca
|
09-10-2018 - 19:43 | 27-10-2014 - 01:55 | |
| CVE-2014-2027 | 7.5 |
eGroupware before 1.8.006.20140217 allows remote attackers to conduct PHP object injection attacks, delete arbitrary files, and possibly execute arbitrary code via the (1) addr_fields or (2) trans parameter to addressbook/csv_import.php, (3) cal_fiel
|
14-11-2017 - 02:29 | 31-03-2015 - 14:59 |