Saeki Tominaga

**Name of the Vulnerable Software and Affected Versions** Movable Type versions prior to 5.2 **Description** A cross-site scripting (XSS) issue exists in the management page, allowing remote authenticated users to inject arbitrary web script or HTML. **Recommendations** For versions prior to 5.2, update to version 5.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** imgboard versions prior to 1.22R6.1 imgboard versions prior to 2010u **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. **Recommendations** For versions prior to 1.22R6.1, update to version 1.22R6.1 or later. For versions prior to 2010u, update to version 2010u or later.

**Name of the Vulnerable Software and Affected Versions** KENT-WEB ACCESS REPORT versions 4.2 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via vectors related to access-log data. This could potentially lead to unauthorized access or control of user sessions. **Recommendations** For versions 4.2 and earlier, update to a version later than 4.2 to resolve the issue. As a temporary workaround, consider restricting access to the access-log data to minimize the risk of exploitation.