CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
Percentile
60.2%
myu-s and PHP WeblogSystem by netmania provided by FLUGELz contain a cross-site scripting vulnerability.
An arbitrary script may be executed on the user’s web browser.
Update the software
Update to the latest product (released on Feb.16, 2012) or a fixed myu-s according to the information provided by the developer.
The developer states that the development of myu-s is discontinued, but the fix addressed to this vulnerability is available.