Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Cybozu Office 6, Cybozu Garoon 2.0.0 through 2.1.3, Cybozu Dezie before 6.1, Cybozu MailWise before 3.1, and Cybozu Collaborex before 1.5 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the mail system."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cybozu多个产品电子邮件系统图形文件下载跨站脚本攻击漏洞
Vulnerability Description
Cybozu Office 6,Cybozu Garoon 2.0.0至2.1.3,Cybozu Dezie 6.1之前版本,Cybozu MailWise 3.1之前版本,以及Cybozu Collaborex 1.5之前版本中存在跨站脚本攻击漏洞。该漏洞源于某些未明输入还没有经过正确过滤就返回给了用户,这些输入与从电子邮件系统下载图形文件有关,远程攻击者可利用该漏洞在受影响站点上下文的用户浏览器会话中执行任意HTML和脚本代码。
CVSS Information
N/A
Vulnerability Type
N/A