3 matches found
CVE-2016-1215
Cybozu Garoon contains an XSS vulnerability in the "User details" function (CVE-2016-1215). Multiple connected sources confirm this as part of a set of CVEs affecting Garoon up to version 4.2.2. Affected ranges include Cybozu Garoon 4.2.0–4.2.1 (CVE-2016-1214, 1215, 1216) and Cybozu Garoon 3.0.0–...
CVE-2016-1215
Cross-site scripting XSS vulnerability in the "User details" function in Cybozu Garoon before 4.2.2...
JVN#67595539: Cybozu Garoon multiple cross-site scripting vulnerabilities
Cybozu Garoon provided by Cybozu,Inc. is a groupware. Cybozu Garoon contains multiple cross-site scripting vulnerabilities. Cross-site scripting in the "Response request" function - CVE-2016-1214 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score:...