Garoon@3.5.3 Security Vulnerabilities and Issues — Garoon@3.5.3 CVE List

Lucene search

CybozuGaroon3.5.3

3 matches found

CVE•added 2013/02/14 12:11 p.m.•42 views

CVE-2013-0702

Cross-site scripting (XSS) vulnerability in Cybozu Garoon 2.0.0 through 3.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00296EPSS

CVE•added 2013/12/28 4:53 a.m.•37 views

CVE-2013-6006

Cybozu Garoon 3.5 through 3.7 SP2 allows remote attackers to bypass Keitai authentication via a modified user ID in a request.

5.8CVSS7AI score0.00127EPSS

CVE•added 2013/02/14 12:11 p.m.•35 views

CVE-2013-0701

SQL injection vulnerability in Cybozu Garoon 2.5.0 through 3.5.3 allows remote authenticated users to execute arbitrary SQL commands by leveraging a logging privilege.

6CVSS8.2AI score0.00282EPSS