CVE-2017-2164
https://notcve.org/view.php?id=CVE-2017-2164
Cross-site scripting vulnerability in SOY CMS with installer 1.8.12 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad Cross-Site Scripting (XSS) en SOY CMS con el instalador 1.8.12 y en versiones anteriores, permite a los atacantes inyectar scripts web o HTML arbitrarios utilizando vectores no especificados. • http://jvn.jp/en/jp/JVN51978169/index.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2014-1998
https://notcve.org/view.php?id=CVE-2014-1998
Cross-site scripting (XSS) vulnerability in Nippon Institute of Agroinformatics SOY CMS 1.4.0c and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en Nippon Institute of Agroinformatics SOY CMS 1.4.0c y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de vectores no especificados. • http://jvn.jp/en/jp/JVN54650130/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2014-000047 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •