Koki Takahashi

**Name of the Vulnerable Software and Affected Versions** Let's PHP! p++BBS versions prior to 4.10 **Description** The issue is related to a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors. **Recommendations** For versions prior to 4.10, update to version 4.10 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** duwasai flashy theme versions 1.3 and earlier **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For duwasai flashy theme versions 1.3 and earlier, update to a version later than 1.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mrs. Shiromuku Perl CGI shiromuku(u1)GUESTBOOK versions 1.62 and earlier **Description** The issue is related to a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors, potentially leading to unauthorized access or control over user sessions. **Recommendations** For versions 1.62 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Outlook.com application version prior to 7.8.2.12.49.7090 **Description** The issue allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate, as the application does not verify X.509 certificates from SSL servers. **Recommendations** For versions prior to 7.8.2.12.49.7090, update to version 7.8.2.12.49.7090 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** C-BOARD Moyuku versions 1.01b6 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. This could potentially lead to unauthorized actions on the affected system. **Recommendations** For versions 1.01b6 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ChamaNet ChamaCargo versions 7.0000 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions 7.0000 and earlier, update to a version later than 7.0000 to resolve the issue.