Information from Cybozu, Inc.
Vulnerability ID:JVN#21025396
Title:Multiple PHP code execution vulnerabilitles in Cybozu Garoon
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
For more information about this vulnerability, please see our Japanese website.
[CyVDB-863] Cybozu Garoon allows remote authenticated users to execute arbitrary PHP code.
https://support.cybozu.com/ja-jp/article/8809
[CyVDB-866] Cybozu Garoon allows remote authenticated users to execute arbitrary PHP code in RSS Reader function.
https://support.cybozu.com/ja-jp/article/8810
[CyVDB-867] Cybozu Garoon allows remote authenticated users to execute arbitrary PHP code.
https://support.cybozu.com/ja-jp/article/8811
