3 matches found
CVE-2021-20753
Cross-site scripting vulnerability in Scheduler of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...
CVE-2021-20753
CVE-2021-20753 describes a cross-site scripting vulnerability in the Scheduler module of Cybozu Garoon, affecting Cybozu Garoon versions 4.0.0 through 5.0.2. The underlying issue is an input handling flaw that allows a remote authenticated attacker to inject arbitrary script via unspecified vecto...
JVN#54794245: Multiple vulnerabilities in Cybozu Garoon
Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-1782 Cross-site scripting vulnerability in Scheduler CWE-79 - CVE-2021-20753 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N| Base Score: 5.4 CVSS v2|...