Published:2015/03/26  Last Updated:2015/03/26

Information from Nishishi Factory

Vulnerability ID:JVN#74547976
Title:Fumy Teacher's Schedule Board vulnerable to cross-site scripting
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.

The Schedule CGI "Fumy Teacher's Schedule Board" (Ver 1.10~2.21) contains a cross-site scripting vulnerability.
This issue has been resolved in Ver 2.22.
Please update to the latest version.

For more information on this issue, please refer to the following URL (Written in Japanese).
http://www.nishishi.com/cgi/ftsb/20150321.html