CVE-2014-0821
CVE-2014-0821 describes a SQL injection in Cybozu Garoon’s file download feature. Affected: Cybozu Garoon 2.0–2.5.4 and 3.x up to 3.7 SP3; vulnerability allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. Root cause: injection in the download process (not ...