Required CVE Record Information
Description
Cross-site scripting (XSS) vulnerability in analysis.cgi 1.44, as used in K's CGI Access Log Kaiseki (1) jcode.pl and (2) Jcode.pm, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References 7 Total
- http://www.kumacchi.com/cgiroom/index.html
- jvn.jp: JVN#72065744 third-party-advisory
- jvndb.jvn.jp: JVNDB-2008-000044 third-party-advisory
- jvn.jp: JVN#46869708 third-party-advisory
- exchange.xforce.ibmcloud.com: accesslogkaiseki-analysis-xss(46053) vdb-entry
- http://www.kumacchi.com/cgiroom/cgis/accesslogex/accesslogex.html
- jvndb.jvn.jp: JVNDB-2008-000043 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 7 Total
- http://www.kumacchi.com/cgiroom/index.html x_transferred
- jvn.jp: JVN#72065744 third-party-advisoryx_transferred
- jvndb.jvn.jp: JVNDB-2008-000044 third-party-advisoryx_transferred
- jvn.jp: JVN#46869708 third-party-advisoryx_transferred
- exchange.xforce.ibmcloud.com: accesslogkaiseki-analysis-xss(46053) vdb-entryx_transferred
- http://www.kumacchi.com/cgiroom/cgis/accesslogex/accesslogex.html x_transferred
- jvndb.jvn.jp: JVNDB-2008-000043 third-party-advisoryx_transferred