Yoshimitsu Kato

Researcher fromAsterisk Corporation
#15439of 53,635
17.5Total CVSS
Vulnerabilities · 3
Medium
3
PT-2024-31714
6.1
2024-09-08
Unknown · Forminator · CVE-2024-45625
Name of the Vulnerable Software and Affected Versions: Forminator versions prior to 1.34.1 Description: A cross-site scripting vulnerability exists in the software. If this issue is exploited, an arbitrary script may be executed on the web browser of the user who follows a crafted URL and accesses the webpage with the web form created by the software. Recommendations: For versions prior to 1.34.1, update to version 1.34.1 or later to resolve the issue. As a temporary workaround, consider restricting access to web forms created by the software until a patch is applied. Avoid using the software to create new web forms that could be exploited until the issue is resolved.
PT-2021-14191
6.1
2021-06-22
Etuna · Etuna Ec-Cube Delivery Slip Number Csv Bulk Registration Plugin · CVE-2021-20735
Name of the Vulnerable Software and Affected Versions: ETUNA EC-CUBE Delivery slip number plugin versions 1.0.10 and earlier ETUNA EC-CUBE Delivery slip number csv bulk registration plugin versions 1.0.8 and earlier ETUNA EC-CUBE Delivery slip number mail plugin versions 1.0.8 and earlier Description: A cross-site scripting issue allows remote attackers to inject an arbitrary script by executing a specific operation on the management page of EC-CUBE. Recommendations: For ETUNA EC-CUBE Delivery slip number plugin versions 1.0.10 and earlier, update to a version later than 1.0.10. For ETUNA EC-CUBE Delivery slip number csv bulk registration plugin versions 1.0.8 and earlier, update to a version later than 1.0.8. For ETUNA EC-CUBE Delivery slip number mail plugin versions 1.0.8 and earlier, update to a version later than 1.0.8.
PT-2021-14171
5.3
2021-04-26
Nec · Nec Aterm Wg2600Hs · CVE-2021-20712
Name of the Vulnerable Software and Affected Versions: NEC Aterm WG2600HS versions 1.5.1 and earlier NEC Aterm WX3000HP versions 1.1.2 and earlier Description: The issue is related to improper access control in the firmware, allowing devices connected to the LAN side to be accessed from the WAN side due to a defect in the IPv6 firewall function. Recommendations: For NEC Aterm WG2600HS versions 1.5.1 and earlier, update to a version later than 1.5.1 to resolve the issue. For NEC Aterm WX3000HP versions 1.1.2 and earlier, update to a version later than 1.1.2 to resolve the issue.