CVE-2018-0549

Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.6.0 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
References
Link Resource
http://jvn.jp/en/jp/JVN65268217/index.html Third Party Advisory VDB Entry
https://support.cybozu.com/ja-jp/article/10058 Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:cybozu:garoon:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-04-16 14:29

Updated : 2024-02-04 19:46


NVD link : CVE-2018-0549

Mitre link : CVE-2018-0549

CVE.ORG link : CVE-2018-0549


JSON object : View

Products Affected

cybozu

  • garoon
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')