Cross-site scripting (XSS) vulnerability in multiple Rocomotion products, including P board 1.18 and other versions, P forum 1.30 and previous versions, P up board 1.38 and other versions, P diary R 1.13 and previous versions, P link 1.11 and previous versions, P link compact 1.04 and previous versions, pplog 3.31 and previous versions, pplog2 3.37 and previous versions, PM bbs 1.07 and previous versions, PM up bbs 1.08 and previous versions, and PM forum 1.18 and previous versions, allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rocomotion p board |
||
rocomotion p diary r |
||
rocomotion p forum |
||
rocomotion p link |
||
rocomotion p link compact |
||
rocomotion p up board |
||
rocomotion pm bbs |
||
rocomotion pm forum |
||
rocomotion pplog |
||
rocomotion pplog 2 |