Cybozu Garoon 3.0.0 to 4.2.2 SQL Injection Vulnerability in MultiReport Function

Cybozu Garoon 3.0.0 to 4.2.2 SQL Injection Vulnerability in MultiReport Function

CVE-2016-7803 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in the Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to execute arbitrary SQL commands via "MultiReport" function.

Learn more about our Web Application Penetration Testing UK.