JVN#99681273: myu-s / PHP WeblogSystem by netmania vulnerable to cross-site scripting

ID JVN:99681273
Type jvn
Reporter Japan Vulnerability Notes
Modified 2013-01-22T00:00:00


## Description

myu-s and PHP WeblogSystem by netmania provided by FLUGELz contain a cross-site scripting vulnerability.

## Impact

An arbitrary script may be executed on the user's web browser.

## Solution

Update the software
Update to the latest product (released on Feb.16, 2012) or a fixed myu-s according to the information provided by the developer.

The developer states that the development of myu-s is discontinued, but the fix addressed to this vulnerability is available.

## Products Affected

  • myu-s and PHP WeblogSystem by netmania released before February 16, 2012