CVE-2014-1998

Cross-site scripting XSS vulnerability in Nippon Institute of Agroinformatics SOY CMS 1.4.0c and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2014-1998

CVE-2014-1998 affects Nippon Institute of Agroinformatics SOY CMS; SOY CMS Ver. 1.4.0c and earlier are vulnerable to a cross-site scripting (XSS) flaw allowing remote attackers to run arbitrary scripts via unspecified vectors. Root cause: unvalidated/inadequate sanitization in user-facing input p...