Cross-site scripting (XSS) vulnerability in the RSS reader in a certain SOURCENEXT product, probably IKANARI JIJYOU 1.0.0 and 1.0.1, allows remote attackers to inject arbitrary web script or HTML via the title of an article in a feed.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/33452http://www.sourcenext.info/download/jijou.htmlhttp://jvn.jp/jp/JVN%2364227086/index.html
