Описание
Multiple cross-site scripting (XSS) vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to inject arbitrary web script or HTML via components in the samples (aka _samples) directory.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| fckeditor | fixed | 1:2.6.4.1-1 | package | |
| moin | fixed | 1.8.2-2 | package | |
| moin | no-dsa | lenny | package | |
| moin | not-affected | etch | package | |
| knowledgeroot | fixed | 0.9.8.5-3 | package | |
| knowledgeroot | not-affected | etch | package | |
| karrigell | removed | package | ||
| karrigell | not-affected | etch | package | |
| gforge | fixed | 4.6.99+svn6225-1 | package | |
| gforge | not-affected | etch | package | |
| egroupware | not-affected | package | ||
| request-tracker3.8 | not-affected | package |
Примечания
moin from 1.8.2-2 uses systemwide copy of fckeditor
knowledgeroot from 0.9.8.5-3 uses systemwide copy of fckeditor
EPSS
Связанные уязвимости
Multiple cross-site scripting (XSS) vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to inject arbitrary web script or HTML via components in the samples (aka _samples) directory.
Multiple cross-site scripting (XSS) vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to inject arbitrary web script or HTML via components in the samples (aka _samples) directory.
Multiple cross-site scripting (XSS) vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to inject arbitrary web script or HTML via components in the samples (aka _samples) directory.
EPSS