rakuto.net hitSuji Cross-Site Scripting Vulnerability

rakuto.net hitSuji is an open source SNS social networking site software. A cross-site scripting vulnerability in rakuto.net hitSuji 0.2.2b allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-2986

Cross-site scripting XSS vulnerability in rakuto.net hitSuji rktSNS2 0.2.2b allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in rakuto.net hitSuji rktSNS2 0.2.2b allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-2986

The CVE pertains to rakuto.net hitSuji (rktSNS2) 0.2.2b, described as a cross‑site scripting (XSS) vulnerability that could allow remote attackers to inject arbitrary script or HTML via unspecified vectors. The NVD/NIST entries report a base CVSSv2 score of 4.3 (Medium), with impact limited to pa...

CVE-2015-2986

Cross-site scripting XSS vulnerability in rakuto.net hitSuji rktSNS2 0.2.2b allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

JVN#44532794 rktSNS cross-site scripting vulnerability

rktSNS, provided by rakuto.net, is open source software for community site construction. rktSNS contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Apply the update provided by the developer. For more...