Tsuyoshi Ishibashi

**Name of the Vulnerable Software and Affected Versions** AD2000 free-sw leger (aka Web Conference Room Free) versions 1.6.4 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. **Recommendations** For AD2000 free-sw leger (aka Web Conference Room Free) versions 1.6.4 and earlier, update to a version later than 1.6.4 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SapporoWorks BlackJumboDog (BJD) versions prior to 4.2.3 **Description** The issue allows remote attackers to bypass authentication and obtain sensitive information. **Recommendations** For versions prior to 4.2.3, update to version 4.2.3 or later to resolve the issue.