3 matches found
PT-2024-22320 · Soycms · Soy Cms
Name of the Vulnerable Software and Affected Versions: SOY CMS versions prior to 3.14.2 Description: The issue is an OS Command Injection vulnerability within the file upload feature when accessed by an administrator, allowing the execution of arbitrary OS commands through specially crafted file...
CVE-2014-1998
Cross-site scripting XSS vulnerability in Nippon Institute of Agroinformatics SOY CMS 1.4.0c and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
SOY CMS vulnerable to cross-site scripting
Overview SOY CMS contains a cross-site scripting vulnerability. SOY CMS provided by Nippon Institute of Agroinformatics Ltd. is an open source content management system CMS. SOY CMS contains a cross-site scripting vulnerability. Ken Asai reported this vulnerability to IPA. JPCERT/CC coordinated...