CVE-2013-6005 Information

Description

Cross-site scripting (XSS) vulnerability in Cybozu Dezie before 8.1.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Cancel button.

Reference

http://cs.cybozu.co.jp/information/20131209up11.php http://jvn.jp/en/jp/JVN21336955/index.html http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000118.html http://osvdb.org/100819 http://secunia.com/advisories/55962 https://exchange.xforce.ibmcloud.com/vulnerabilities/89577