Cross-site scripting (XSS) vulnerability in the RSS reader in a certain SOURCENEXT product, probably IKANARI JIJYOU 1.0.0 and 1.0.1, allows remote malicious users to inject arbitrary web script or HTML via the title of an article in a feed.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
sourcenext ikanari jijyou 1.0.1 |
||
sourcenext ikanari jijyou 1.0.0 |
Vulmon