2 matches found
CVE-2018-0559
CVE-2018-0559 concerns Cybozu Mailwise 5.0.0–5.4.1 with a reflected cross-site scripting flaw in the Address field (CWE-79). The vulnerability allows an attacker to inject scripts that may execute in the logged-in user’s browser; impact is described as arbitrary script execution on the user’s bro...
JVN#52319657: Multiple cross-site scripting vulnerabilities in Cybozu Mailwise
Cybozu Mailwise contains multiple cross-site scripting vulnerabilities below. Stored cross-site scripting vulnerability in "E-mail Details Screen" CWE-79 - CVE-2018-0557 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2|...