Yoshinori

**Name of the Vulnerable Software and Affected Versions** NTT PC Communications WebARENA Service formmail versions prior to 2.2.1 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors, potentially affecting the security of the service. **Recommendations** For versions prior to 2.2.1, update to version 2.2.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Fumy Teacher's Schedule Board versions 1.10 through 2.21 **Description** A cross-site scripting issue exists, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL. **Recommendations** For versions 1.10 through 2.21, update to a version that fixes this issue to prevent remote attackers from injecting arbitrary web script or HTML.