GCVE - cpe:2.3:a:cybozu:garoon:*:sp5:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:cybozu:garoon:*:sp5:*:*:*:*:*:*

part: a version: * update: sp5

Vendor	Cybozu (`6c3c6c19-80d3-5353-ad46-e08ec1369448`)
Product	Garoon (`d176de44-7896-57c4-9c0a-d58b65def00b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2013-6910`	vulnerable	2026-06-03 14:33:32.937197	Details available Cross-site scripting (XSS) vulnerability in Ajax components in Cybozu Garoon before 3.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:45.172Z Open on db.gcve.eu Reference links http://cs.cybozu.co.jp/information/20131202up01.php https://support.cybozu.com/ja-jp/article/6434 http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 http://jvn.jp/en/jp/JVN23981867/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6909`	vulnerable	2026-06-03 14:33:32.936290	Details available Cross-site scripting (XSS) vulnerability in a report component in Cybozu Garoon before 3.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:45.503Z Open on db.gcve.eu Reference links https://support.cybozu.com/ja-jp/article/6384 http://cs.cybozu.co.jp/information/20131202up01.php http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 http://jvn.jp/en/jp/JVN23981867/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6907`	vulnerable	2026-06-03 14:33:32.930138	Details available Cross-site scripting (XSS) vulnerability in a mail component in Cybozu Garoon 2.x and 3.x before 3.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:44.838Z Open on db.gcve.eu Reference links http://cs.cybozu.co.jp/information/20131202up01.php http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 http://jvn.jp/en/jp/JVN23981867/index.html https://support.cybozu.com/ja-jp/article/6166	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6906`	vulnerable	2026-06-03 14:33:32.919904	Details available Cross-site scripting (XSS) vulnerability in a mail component in Cybozu Garoon before 3.7.0, when Internet Explorer 6 through 8 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:45.243Z Open on db.gcve.eu Reference links http://cs.cybozu.co.jp/information/20131202up01.php https://support.cybozu.com/ja-jp/article/6174 http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 http://osvdb.org/100574 http://jvn.jp/en/jp/JVN23981867/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6905`	vulnerable	2026-06-03 14:33:32.918938	Details available Cross-site scripting (XSS) vulnerability in a phone component in Cybozu Garoon before 3.7.0, when Internet Explorer or Firefox is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:45.534Z Open on db.gcve.eu Reference links http://cs.cybozu.co.jp/information/20131202up01.php http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 https://support.cybozu.com/ja-jp/article/6195 http://osvdb.org/100573 http://jvn.jp/en/jp/JVN23981867/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6904`	vulnerable	2026-06-03 14:33:32.917833	Details available Cross-site scripting (XSS) vulnerability in a note component in Cybozu Garoon before 3.7.0, when Internet Explorer or Firefox is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:44.650Z Open on db.gcve.eu Reference links https://support.cybozu.com/ja-jp/article/6395 http://cs.cybozu.co.jp/information/20131202up01.php http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 http://osvdb.org/100572 http://jvn.jp/en/jp/JVN23981867/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6903`	vulnerable	2026-06-03 14:33:32.908318	Details available Cross-site scripting (XSS) vulnerability in a schedule component in Cybozu Garoon before 3.7.0, when Internet Explorer or Firefox is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:45.289Z Open on db.gcve.eu Reference links http://cs.cybozu.co.jp/information/20131202up01.php http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 https://support.cybozu.com/ja-jp/article/6165 http://osvdb.org/100571 http://jvn.jp/en/jp/JVN23981867/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6902`	vulnerable	2026-06-03 14:33:32.907133	Details available Cross-site scripting (XSS) vulnerability in the Space function in Cybozu Garoon before 3.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:45.553Z Open on db.gcve.eu Reference links http://cs.cybozu.co.jp/information/20131202up01.php https://support.cybozu.com/ja-jp/article/5838 http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 http://jvn.jp/en/jp/JVN23981867/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6901`	vulnerable	2026-06-03 14:33:32.906189	Details available Cross-site scripting (XSS) vulnerability in the Space function in Cybozu Garoon before 3.7.0, when Firefox is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:44.638Z Open on db.gcve.eu Reference links http://cs.cybozu.co.jp/information/20131202up01.php http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 http://osvdb.org/100555 http://jvn.jp/en/jp/JVN23981867/index.html https://support.cybozu.com/ja-jp/article/6193	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6900`	vulnerable	2026-06-03 14:33:32.891936	Details available Cross-site scripting (XSS) vulnerability in the system-administration component in Cybozu Garoon before 3.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-05T11:00:00.000Z Updated: 2024-08-06T17:53:44.644Z Open on db.gcve.eu Reference links http://cs.cybozu.co.jp/information/20131202up01.php http://jvndb.jvn.jp/jvndb/JVNDB-2013-000113 http://jvn.jp/en/jp/JVN23981867/index.html https://support.cybozu.com/ja-jp/article/6153	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.