Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.5 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
cybozu office