2 matches found
CVE-2018-0551
CVE-2018-0551 is a stored cross-site scripting vulnerability affecting Cybozu Garoon versions 3.0.0 to 4.6.1, specifically in the Rich Text component of the Space app. The underlying issue allows an authenticated user to inject arbitrary script/HTML via unspecified vectors, with potential to exec...
JVN#65268217: Multiple vulnerabilities in Cybozu Garoon
Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. SQL injection in the application "Address" CWE-89 - CVE-2018-0530 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N| Base Score: 6.5 CVSS v2| AV:N/AC:L/Au:S/C:P/I:N/A:N|...