CVE-2021-20807

Description

Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.0.0 to 3.1.9 allows a remote attacker to inject an arbitrary script via unspecified vectors.

Affected products

• Cybozu, Inc. / Cybozu Remote Service3.0.0 to 3.1.9 – 3.0.0 to 3.1.9

References

• MISChttps://jvn.jp/en/jp/JVN52694228/index.html
• MISChttps://kb.cybozu.support/article/37430