Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
cybozu office