Published:2010/10/05  Last Updated:2010/10/05

Information from NorenzPRO Ltd.

Title:AD-EDIT2 vulnerable to cross-site scripting

This is a statement from the vendor itself with no modification by JPCERT/CC.

XSS security hole was found on AD-EDIT before v3.0.8.

Two search program files has XSS security hole.
Please update this product later v3.0.9.

[How to Update on VideoGuidance]
You can update on ControlPanel.

[How to File Replace]
You can download forced CGI file on this URL

This Package Include Two File(one is for later v3.0.5, another is for before v3.0.4).

Select file and replace below.