VYPR

Desknet Neo

by NEOJAPAN Inc.

CVEs (2)

  • CVE-2025-24833MedOct 16, 2025
    risk 0.35cvss 5.4epss 0.00

    Stored cross-site scripting (XSS) vulnerability in desknet's NEO versions V4.0R1.0–V9.0R2.0 allow execution of arbitrary JavaScript in a user’s web browser.

  • CVE-2015-2990Sep 5, 2015
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in zhtml.cgi in NEOJAPAN desknet NEO 2.0R1.0 through 2.5R1.4 allows remote authenticated users to read arbitrary files via a crafted parameter.