CVE-2011-1335

N/A Unknown

Published: June 29, 2011 Modified: April 29, 2026

Description

Cross-site scripting (XSS) vulnerability in Cybozu Office 6, 7, and 8 before 8.1.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to the "address book and user list functions."

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://cs.cybozu.co.jp/information/20100816notice05.php

Source: vultures@jpcert.or.jp

Patch Vendor Advisory

http://jvn.jp/en/jp/JVN55508059/index.html

Source: vultures@jpcert.or.jp

http://jvndb.jvn.jp/jvndb/JVNDB-2011-000047

Source: vultures@jpcert.or.jp

http://secunia.com/advisories/44992

Source: vultures@jpcert.or.jp

Vendor Advisory

http://secunia.com/advisories/45050

Source: vultures@jpcert.or.jp

Vendor Advisory

http://www.osvdb.org/73320

Source: vultures@jpcert.or.jp

http://www.securityfocus.com/bid/48446

Source: vultures@jpcert.or.jp

http://cs.cybozu.co.jp/information/20100816notice05.php