CVE-2014-1992
CVE-2014-1992 describes a cross-site scripting (XSS) vulnerability in the Messages function of Cybozu Garoon. Affected are Cybozu Garoon versions 3.1.x, 3.5.x, and 3.7.x prior to 3.7 SP4, potentially allowing remote authenticated users to inject arbitrary scripts/HTML via unspecified vectors. Cur...