CVE-2022-28715

Description

Cross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows a remote attacker to inject an arbitrary script via unspecified vectors.

Affected products

• Cybozu, Inc. / Cybozu Office10.0.0 to 10.8.5 – 10.0.0 to 10.8.5

References

• MISChttps://cs.cybozu.co.jp/2022/007584.html
• MISChttps://jvn.jp/en/jp/JVN20573662/index.html