Yoshinori Matsumoto

Researcher fromKobe Digital Labo, Inc.
#8399of 53,633
32.6Total CVSS
Vulnerabilities · 6
Medium
6
PT-2016-6177
6.1
2016-09-02
Clipbucket · Clipbucket · CVE-2016-4848
**Name of the Vulnerable Software and Affected Versions** ClipBucket versions prior to 2.8.1 RC2 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions prior to 2.8.1 RC2, update to version 2.8.1 RC2 or later to resolve the issue.
PT-2014-5596
6.8
2014-08-26
Mailpoet · Mailpoet Newsletters · CVE-2014-3907
**Name of the Vulnerable Software and Affected Versions** MailPoet Newsletters (wysija-newsletters) plugin versions prior to 2.6.11 **Description** A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of arbitrary users. **Recommendations** For versions prior to 2.6.11, update to version 2.6.11 or later to resolve the issue.
PT-2014-5577
4.3
2014-07-20
Webmin · Webmin · CVE-2014-3885
**Name of the Vulnerable Software and Affected Versions** Webmin versions prior to 1.690 **Description** A cross-site scripting (XSS) issue allows remote authenticated users to inject arbitrary web script or HTML. **Recommendations** For versions prior to 1.690, update to version 1.690 or later to resolve the issue.
PT-2012-5825
4.3
2012-12-19
WordPress · Welcart · CVE-2012-5177
**Name of the Vulnerable Software and Affected Versions** Welcart plugin versions prior to 1.2.2 **Description** The issue is related to a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors. **Recommendations** For versions prior to 1.2.2, update to version 1.2.2 or later to resolve the issue.
PT-2012-5826
6.8
2012-12-19
Welcart · Welcart · CVE-2012-5178
**Name of the Vulnerable Software and Affected Versions** Welcart plugin versions prior to 1.2.2 **Description** A cross-site request forgery issue allows remote attackers to hijack the authentication of arbitrary users for requests that complete a purchase. **Recommendations** For versions prior to 1.2.2, update to version 1.2.2 or later to resolve the issue.
PT-2012-4143
4.3
2012-06-15
@Web · @Web Shoppingcart · CVE-2012-2631
**Name of the Vulnerable Software and Affected Versions** @WEB ShoppingCart versions prior to 1.5.2.0 @WEB ShoppingCart T versions 1.5.0.1 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. **Recommendations** For @WEB ShoppingCart versions prior to 1.5.2.0, update to version 1.5.2.0 or later. For @WEB ShoppingCart T versions 1.5.0.1 and earlier, update to a version later than 1.5.0.1.