{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000008.html",
  "dc:date": "2012-01-23T18:27+09:00",
  "dcterms:issued": "2012-01-23T18:27+09:00",
  "dcterms:modified": "2012-01-23T18:27+09:00",
  "description": "glucose 2 is vulnerable to arbitrary script execution.\r\n\r\nglucose 2 is an RSS reader. glucose 2 is vulnerable to arbitrary script execution which is inserted in RSS feed, due to the improper processing of RSS feed output.\r\n\r\nDaiki Fukumori of Cyber Defense Institute, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000008.html",
  "sec:cpe": {
    "#text": "cpe:/a:glucose:glucose_2",
    "@product": "glucose",
    "@vendor": "glucose inc.",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "4.3",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2012-000008",
  "sec:references": [
    {
      "#text": "http://jvn.jp/en/jp/JVN65869891/index.html",
      "@id": "JVN#65869891",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0313",
      "@id": "CVE-2012-0313",
      "@source": "CVE"
    },
    {
      "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0313",
      "@id": "CVE-2012-0313",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-79",
      "@title": "Cross-site Scripting(CWE-79)"
    }
  ],
  "title": "glucose 2 vulnerable to arbitrary script execution"
}