CVE-2013-0702

Cybozu Garoon 2.0.0-3.5.3 - Cross-Site Scripting

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in Cybozu Garoon 2.0.0 through 3.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (3)

Core 3

Core References

Vendor Advisory x_refsource_confirm

http://cs.cybozu.co.jp/information/20130125up01.php

Third Party Advisory third-party-advisory x_refsource_jvn

http://jvn.jp/en/jp/JVN95863326/index.html

Third Party Advisory third-party-advisory x_refsource_jvndb

http://jvndb.jvn.jp/jvndb/JVNDB-2013-000008

Scores

EPSS 0.0030

EPSS Percentile 53.1%

Details

CWE

CWE-79

Status published

Products (13)

cybozu/garoon 2.0.0

cybozu/garoon 2.0.1

cybozu/garoon 2.0.2

cybozu/garoon 2.0.3

cybozu/garoon 2.0.4

cybozu/garoon 2.0.5

cybozu/garoon 2.0.6

cybozu/garoon 2.1.0

cybozu/garoon 2.1.1

cybozu/garoon 2.1.2

... and 3 more

Published Feb 14, 2013

Tracked Since Feb 18, 2026