CVE-2019-5934

Summary

SQL injection vulnerability in the Cybozu Garoon 4.0.0 to 4.10.0 allows attacker with administrator rights to execute arbitrary SQL commands via the Log Search function of application 'logging'.

Affected Software

VendorProductVersion RangeStatus
Cybozu, Inc.Cybozu Garoon4.0.0 to 4.10.0affected

Weaknesses

  • SQL Injection

ADP Enrichment

CVE Program Container

Additional References

References