Cross-site scripting (XSS) vulnerability in the "Check available times" function in Cybozu Garoon prior to 4.2.2.
cybozu garoon