2 matches found
CVE-2022-33151
Cybozu Office (Cybozu, Inc.) has a Cross-site scripting (CWE-79) vulnerability CVE-2022-33151 affecting versions 10.0.0 through 10.8.5. The issue is described as an XSS in specific parameters that can allow a remote attacker to cause arbitrary script execution in a victim’s browser via unspecifie...
JVN#20573662: Multiple vulnerabilities in Cybozu Office
Cybozu Office provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-839CyVDB-2300CyVDB-3109 Browse restriction bypass vulnerability in Cabinet CWE-284 - CVE-2022-32283 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N| Base Score: 4....