CVE-2014-1995

2014-07-2010:00:00

jpcert

www.cve.org

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

39.7%

JSON

Cross-site scripting (XSS) vulnerability in the Map search functionality in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

References

cs.cybozu.co.jp/information/gr20140714up02.php

jvn.jp/en/jp/JVN97558950/index.html

jvndb.jvn.jp/jvndb/JVNDB-2014-000075