Assigner | jpcert |
Reserved | 2024-04-03 |
Published | 2024-06-11 |
Updated | 2024-06-11 |
Description
Cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.15.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script on the web browser of the user who is logging in to the product.
Problem types
Cross-site scripting (XSS)
Product status
References
https://cs.cybozu.co.jp/2024/007901.html
https://jvn.jp/en/jp/JVN28869536/