CVE-2018-0530

Description

SQL injection vulnerability in the Cybozu Garoon 3.5.0 to 4.2.6 allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

• Cybozu, Inc. / Cybozu Garoon3.5.0 to 4.2.6 – 3.5.0 to 4.2.6

References

• MISChttps://support.cybozu.com/ja-jp/article/9326
• MISChttp://jvn.jp/en/jp/JVN65268217/index.html