Ohji Kashiwazaki

**Name of the Vulnerable Software and Affected Versions** Dradis Community Edition versions 3.11 and earlier Dradis Professional Edition versions 3.1.1 and earlier **Description** A cross-site scripting issue allows remote authenticated attackers to inject arbitrary web script or HTML. **Recommendations** For Dradis Community Edition versions 3.11 and earlier, update to a version later than 3.11. For Dradis Professional Edition versions 3.1.1 and earlier, update to a version later than 3.1.1.

**Name of the Vulnerable Software and Affected Versions** Corega CG-WLBARGL devices (affected versions not specified) **Description** The issue allows remote authenticated users to execute arbitrary commands via unspecified vectors. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** KENT-WEB POST-MAIL versions prior to 6.7 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via an unspecified form field when Internet Explorer 7 or earlier is used. **Recommendations** For versions prior to 6.7, update to version 6.7 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Canon IT Solutions Inc. ACCESSGUARDIAN versions 3.0.14 and earlier Canon IT Solutions Inc. ACCESSGUARDIAN versions 3.5.6 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to authentication. **Recommendations** For versions 3.0.14 and earlier, update to a version later than 3.0.14. For versions 3.5.6 and earlier, update to a version later than 3.5.6.