CVE-2013-3656
Cybozu Office 9.1.0 and earlier does not properly manage sessions, which allows remote attackers to bypass authentication by leveraging knowledge of a login URL.
Date published : 2013-07-17
http://products.cybozu.co.jp/office/ver9/download/update/fix910.html