7 matches found
EUVD-2008-6418
Malware in sbrugna...
Multiple SKYARC System Co., Ltd. products fail to restrict access permissions
Overview Multiple products provided by SKYARC System Co., Ltd. contain an issue where access permissions are not restricted. MTCMS and multiple Movable Type plugins provided by SKYARC System Co., Ltd. contain an issue where access permissions are not restricted. Impact A user without the...
JVN#41032068: Multiple SKYARC System Co., Ltd. products fail to restrict access permissions
MTCMS and multiple Movable Type plugins provided by SKYARC System Co., Ltd. contain an issue where access permissions are not restricted. Impact A user without the appropriate privileges may alter settings and files. Solution Apply an update Update to the latest version according to the informati...
CVE-2008-6448
Cross-site scripting XSS vulnerability in install.cgi in SKYARC System MTCMS WYSIWYG Editor allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2008-6448
Cross-site scripting XSS vulnerability in install.cgi in SKYARC System MTCMS WYSIWYG Editor allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2008-6448
The CVE-2008-6448 vulnerability affects SKYARC System MTCMS WYSIWYG Editor, specifically the install.cgi component, where a cross-site scripting (XSS) flaw allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The practical impact is execution of arbitrary script...
JVN#21312708 MTCMS WYSIWYG Editor cross-site scripting vulnerability
MTCMS WYSIWYG Editor from SKYARC System is management software used to update Movable Type contents, etc. The install.cgi in MTCMS WYSIWYG Editor contains a cross-site scripting vulnerability. Impact An arbitrary script could be executed on the user's web browser. Solution Workarounds The vendor...