2 matches found
CVE-2019-5978
Open redirect vulnerability (CVE-2019-5978) in Cybozu Garoon Scheduler affects Cybozu Garoon 4.0.0 to 4.10.2. An attacker can redirect users to arbitrary websites via a crafted URL, enabling phishing risks. Root cause: open redirect in Scheduler. Impact is limited to user redirection; no other co...
JVN#62618482: Multiple vulnerabilities in Cybozu Garoon
Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. DOM-based cross-site scripting in the application "Portal" CWE-79 - CVE-2019-5975 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N| Base Score: 4.4 CVSS v2|...