Cross-site scripting vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.4 allows remote malicious users to inject an arbitrary script via unspecified vectors.
cybozu office