CVE-2018-0530

SQL injection vulnerability in the Cybozu Garoon 3.5.0 to 4.2.6 allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
References
Link Resource
https://support.cybozu.com/ja-jp/article/9326 Vendor Advisory
http://jvn.jp/en/jp/JVN65268217/index.html Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:cybozu:garoon:*:*:*:*:*:*:*:*

Information

Published : 2018-04-16 07:29

Updated : 2018-05-17 06:24


NVD link : CVE-2018-0530

Mitre link : CVE-2018-0530


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

cybozu

  • garoon