CVE-2021-20769

Name of the Vulnerable Software and Affected Versions: Cybozu Garoon versions 4.6.0 through 5.0.2

Description: A cross-site scripting issue allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. This enables the attacker to potentially execute malicious scripts on the victim's browser, leading to unauthorized actions or data theft.

Recommendations: For versions 4.6.0 through 5.0.2, update to a version outside of this range to mitigate the risk of cross-site scripting attacks. As a temporary workaround, consider restricting access to sensitive areas of the application to minimize the risk of exploitation.