HNS MAIN FEED
Saturday, 01:48 EST
- Zero-day vulnerabilities in Firefox extensions discovered
- Three charged with Comcast.net hijacking
- Cloud computing security benefits, risks and recommendations
- Poisoned Google search results
- World’s first wireless USB external hard drive
- A look at Securitybyte & OWASP AppSec Asia Conference 2009
- Biggest threats to federal systems and critical infrastructure
- Are 64-bit Windows inherently safer?
- NSA on cyber attacks and Microsoft collaboration
- New books: ModSecurity, Snow Leopard, social Web applications
- Vulnerability in IBM SolidDB memory caching software
- Two arrested for Zbot Trojan
Cybozu Multiple Products Unspecified Cross-Site Scripting Vulnerabilities
06 November 2009
Multiple Cybozu products are exposed to multiple cross-site scripting issues because they fail to sufficiently sanitize user-supplied input. Successfully exploiting this issues can allow to execute arbitrary HTML and script code in user`s browser session in context of an affected site. Cybozu Office version 7, Cubozu Dezie version 6 and Cybozu Mailwise 3 is affected by this issue.
Ref: http://jvn.jp/en/jp/JVN23108985/index.html
09.44.70 - CVE: Not Available
Platform: Web Application - Cross Site Scripting
Ref: http://jvn.jp/en/jp/JVN23108985/index.html
09.44.70 - CVE: Not Available
Platform: Web Application - Cross Site Scripting