Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-20711

Cross-site scripting vulnerability exists in E-mail function of Cybozu Garoon 5.0.0 to 6.0.3, which may allow an attacker to reset arbitrary users’ passwords.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.6%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2026-20711
  • Cybozu » Garoon » Version: 5.0.0
    cpe:2.3:a:cybozu:garoon:5.0.0
  • Cybozu » Garoon » Version: 5.0.1
    cpe:2.3:a:cybozu:garoon:5.0.1
  • Cybozu » Garoon » Version: 5.0.2
    cpe:2.3:a:cybozu:garoon:5.0.2
  • Cybozu » Garoon » Version: 5.15.0
    cpe:2.3:a:cybozu:garoon:5.15.0
  • Cybozu » Garoon » Version: 5.15.1
    cpe:2.3:a:cybozu:garoon:5.15.1
  • Cybozu » Garoon » Version: 5.15.2
    cpe:2.3:a:cybozu:garoon:5.15.2
  • Cybozu » Garoon » Version: 5.5.0
    cpe:2.3:a:cybozu:garoon:5.5.0
  • Cybozu » Garoon » Version: 5.5.1
    cpe:2.3:a:cybozu:garoon:5.5.1
  • Cybozu » Garoon » Version: 5.9.0
    cpe:2.3:a:cybozu:garoon:5.9.0
  • Cybozu » Garoon » Version: 5.9.1
    cpe:2.3:a:cybozu:garoon:5.9.1
  • Cybozu » Garoon » Version: 5.9.2
    cpe:2.3:a:cybozu:garoon:5.9.2
  • Cybozu » Garoon » Version: 6.0.0
    cpe:2.3:a:cybozu:garoon:6.0.0
  • Cybozu » Garoon » Version: 6.0.1
    cpe:2.3:a:cybozu:garoon:6.0.1
  • Cybozu » Garoon » Version: 6.0.2
    cpe:2.3:a:cybozu:garoon:6.0.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved