CVE-2016-4866
Cross-site scripting (XSS) vulnerability in the “Project” function in Cybozu Office 9.0.0 through 10.4.0.
Read MoreCross-site scripting (XSS) vulnerability in the “Project” function in Cybozu Office 9.0.0 through 10.4.0.
Read MoreThe “breadcrumb trail” component in Cybozu Office 9.0.0 through 10.4.0 allows remote authenticated users to read the names of closed projects.
Read MoreThe “Project” function in Cybozu Office 9.0.0 through 10.4.0 does not properly check access permissions, which allows remote authenticated users to alter project information.
Read MoreCross-site scripting (XSS) vulnerability in the “Customapp” function in Cybozu Office 9.0.0 through 10.4.0.
Read MoreCybozu Office 9.0.0 through 10.4.0 allows remote attackers to conduct a “reflected file download” attack.
Read More