Lucene search
HistoryMar 31, 2009 - 5:30 p.m.
CVE-2008-6570
cve
2008
6570
xss
vulnerability
cybozu garoon
rss reader
remote attackers
web script
html
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
69.3%
Cross-site scripting (XSS) vulnerability in the RSS reader in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to inject arbitrary web script or HTML via a crafted RSS feed.
Affected configurations
Node
cybozugaroonMatch2.0.0
ORcybozugaroonMatch2.0.1
ORcybozugaroonMatch2.0.2
ORcybozugaroonMatch2.0.3
ORcybozugaroonMatch2.0.4
ORcybozugaroonMatch2.0.5
ORcybozugaroonMatch2.0.6
ORcybozugaroonMatch2.1.0
ORcybozugaroonMatch2.1.1
ORcybozugaroonMatch2.1.2
ORcybozugaroonMatch2.1.3
References
Related
cvelist
cvelist
CVE-2008-6570
2009-03-31 17:00:00
CVE-2011-1332
2022-10-03 16:15:11
nvd
nvd
CVE-2008-6570
2009-03-31 17:30:00
CVE-2011-1332
2011-06-29 17:55:01
jvn
jvn
JVN#52363223: Cybozu Garoon vulnerable to arbitrary script execution
2008-06-27 00:00:00
prion
prion
Cross site scripting
2009-03-31 17:30:00
Cross site scripting
2011-06-29 17:55:00
cve
cve
CVE-2011-1332
2022-10-03 16:15:11
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
69.3%
Related for CVE-2008-6570