Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveJpcertCVE-2013-6930
HistoryJan 29, 2014 - 5:37 a.m.

CVE-2013-6930

2014-01-2905:37:02
CWE-89
jpcert
web.nvd.nist.gov
24
cybozu garoon
sql injection
vulnerability
cve-2013-6930
nvd

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

7.9

Confidence

Low

EPSS

0.003

Percentile

69.6%

JSON

SQL injection vulnerability in the page-navigation implementation in Cybozu Garoon 2.0.0 through 2.0.6, 2.1.0 through 2.1.3, 2.5.0 through 2.5.4, 3.0.0 through 3.0.3, 3.5.0 through 3.5.5, and 3.7.x before 3.7.3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2013-6929.

Affected configurations

Nvd
Node
cybozugaroonMatch2.0sp1
OR
cybozugaroonMatch2.0sp2
OR
cybozugaroonMatch2.0sp3
OR
cybozugaroonMatch2.0sp4
OR
cybozugaroonMatch2.0sp5
OR
cybozugaroonMatch2.0sp6
OR
cybozugaroonMatch2.0.0
OR
cybozugaroonMatch2.0.1
OR
cybozugaroonMatch2.0.2
OR
cybozugaroonMatch2.0.3
OR
cybozugaroonMatch2.0.4
OR
cybozugaroonMatch2.0.5
OR
cybozugaroonMatch2.0.6
OR
cybozugaroonMatch2.1sp1
OR
cybozugaroonMatch2.1sp2
OR
cybozugaroonMatch2.1sp3
OR
cybozugaroonMatch2.1.0
OR
cybozugaroonMatch2.1.1
OR
cybozugaroonMatch2.1.2
OR
cybozugaroonMatch2.1.3
OR
cybozugaroonMatch2.5.0
OR
cybozugaroonMatch2.5.1
OR
cybozugaroonMatch2.5.2
OR
cybozugaroonMatch2.5.3
OR
cybozugaroonMatch2.5.4
OR
cybozugaroonMatch3.0.0
OR
cybozugaroonMatch3.0.1
OR
cybozugaroonMatch3.0.2
OR
cybozugaroonMatch3.0.3
OR
cybozugaroonMatch3.1.0
OR
cybozugaroonMatch3.1.1
OR
cybozugaroonMatch3.1.2
OR
cybozugaroonMatch3.1.3
OR
cybozugaroonMatch3.5.0
OR
cybozugaroonMatch3.5.1
OR
cybozugaroonMatch3.5.2
OR
cybozugaroonMatch3.5.3
OR
cybozugaroonMatch3.5.4
OR
cybozugaroonMatch3.5.5
OR
cybozugaroonMatch3.7.0
OR
cybozugaroonMatch3.7.1
OR
cybozugaroonMatch3.7.2
VendorProductVersionCPE
cybozugaroon2.0cpe:2.3:a:cybozu:garoon:2.0:sp1:*:*:*:*:*:*
cybozugaroon2.0cpe:2.3:a:cybozu:garoon:2.0:sp2:*:*:*:*:*:*
cybozugaroon2.0cpe:2.3:a:cybozu:garoon:2.0:sp3:*:*:*:*:*:*
cybozugaroon2.0cpe:2.3:a:cybozu:garoon:2.0:sp4:*:*:*:*:*:*
cybozugaroon2.0cpe:2.3:a:cybozu:garoon:2.0:sp5:*:*:*:*:*:*
cybozugaroon2.0cpe:2.3:a:cybozu:garoon:2.0:sp6:*:*:*:*:*:*
cybozugaroon2.0.0cpe:2.3:a:cybozu:garoon:2.0.0:*:*:*:*:*:*:*
cybozugaroon2.0.1cpe:2.3:a:cybozu:garoon:2.0.1:*:*:*:*:*:*:*
cybozugaroon2.0.2cpe:2.3:a:cybozu:garoon:2.0.2:*:*:*:*:*:*:*
cybozugaroon2.0.3cpe:2.3:a:cybozu:garoon:2.0.3:*:*:*:*:*:*:*
Rows per page:
1-10 of 421

Related

prion 4
nvd 4
cvelist 4
jvn 2
cve 3
seebug 1
prion
prion
Sql injection
2014-01-29 05:37:00
Sql injection
2014-02-27 01:55:00
Sql injection
2013-12-28 04:53:00
nvd
nvd
CVE-2013-6930
2014-01-29 05:37:02
CVE-2014-0821
2014-02-27 01:55:03
CVE-2013-6929
2013-12-28 04:53:06
cvelist
cvelist
CVE-2013-6930
2014-01-29 02:00:00
CVE-2014-0821
2014-02-27 01:00:00
CVE-2013-6929
2013-12-28 02:00:00
jvn
jvn
JVN#91153528: Multiple SQL injection vulnerabilities in Cybozu Garoon
2014-01-28 00:00:00
JVN#60997973: Cybozu Garoon vulnerable to SQL injection
2013-12-25 00:00:00
cve
cve
CVE-2014-0821
2014-02-27 01:55:03
CVE-2013-6929
2013-12-28 04:53:06
CVE-2013-6931
2014-01-29 05:37:02
seebug
seebug
Cybozu Garoonζœͺ明SQL注ε…₯漏洞
2013-12-30 00:00:00

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

7.9

Confidence

Low

EPSS

0.003

Percentile

69.6%

JSON
Related for CVE-2013-6930
prion4nvd4cvelist4jvn2cve3seebug1