Published: 2015/06/09  Last Updated: 2015/06/09

Information from Igreks Inc.

Vulnerability ID:JVN#20879350
Title:MilkyStep vulnerable to cross-site scripting
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.

MilkyStep Light, MilkyStep Professional and their OEM have a vulnerability allows Cross-site scripting.

【Products Affected】
・MilkyStep Light Ver0.94 and earlier
・MilkyStep Professional Ver1.82 and earlier
・MilkyStep Professional OEM Ver1.82 and earlier