CVE-2007-1611 Information

Description

Cross-site scripting (XSS) vulnerability in the RSS reader in a certain SOURCENEXT product probably IKANARI JIJYOU 1.0.0 and 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the title of an article in a feed.

Reference

http://jvn.jp/jp/JVN2364227086/index.html http://www.sourcenext.info/download/jijou.html https://exchange.xforce.ibmcloud.com/vulnerabilities/33452