CVE-2012-2636 - Innominate Potential

Description

Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://jvn.jp/en/jp/JVN33171616/index.html http://www.kent-web.com/bbs/patio.html http://jvndb.jvn.jp/jvndb/JVNDB-2012-000061