2 matches found
CVE-2019-5977
CVE-2019-5977 is a mail header injection vulnerability in Cybozu Garoon 4.0.0 to 4.10.2, where a user with authenticated access can alter mail headers via the E-mail feature. Connected sources confirm the affected product/version range and the vulnerability type (mail header injection) with remed...
JVN#62618482: Multiple vulnerabilities in Cybozu Garoon
Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. DOM-based cross-site scripting in the application "Portal" CWE-79 - CVE-2019-5975 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N| Base Score: 4.4 CVSS v2|...