Cross-Site Scripting Vulnerability in SOY CMS by Nippon Institute of Agroinformatics
CVE-2014-1998

Currently unrated

Key Information:

Vendor: N-i-agroinformatics
Status: Soy Cms
Vendor: CVE Published:; 5 June 2014

🔔 Create N-i-agroinformatics Vulnerability Alert

What is CVE-2014-1998?

A Cross-Site Scripting (XSS) vulnerability exists in SOY CMS versions 1.4.0c and earlier. This allows remote attackers to inject arbitrary web scripts or HTML through unspecified vectors, potentially leading to unauthorized access and manipulation of web sessions. Proper input validation is crucial to mitigate this risk and protect users from malicious exploitation.

References

http://jvn.jp/en/jp/JVN54650130/index.html

third-party-advisoryx_refsource_JVN

http://jvndb.jvn.jp/jvndb/JVNDB-2014-000047

third-party-advisoryx_refsource_JVNDB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 5, 2014
Vulnerability Reserved
Feb 17, 2014