Ntt Communications · Webarena Service Formmail · CVE-2016-1230
**Name of the Vulnerable Software and Affected Versions**
NTT PC Communications WebARENA Service formmail versions prior to 2.2.1
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors, potentially affecting the security of the service.
**Recommendations**
For versions prior to 2.2.1, update to version 2.2.1 or later to resolve the issue.