CVE-2024-31401 Information

Description

Cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.15.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script on the web browser of the user who is logging in to the product.

Reference

https://cs.cybozu.co.jp/2024/007901.html https://jvn.jp/en/jp/JVN28869536/