Описание
Cross-site scripting (XSS) vulnerability in Askbot before 0.7.49 allows remote attackers to inject arbitrary web script or HTML via vectors related to the question search form.
Cross-site scripting (XSS) vulnerability in Askbot before 0.7.49 allows remote attackers to inject arbitrary web script or HTML via vectors related to the question search form.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-2235
- https://github.com/ASKBOT/askbot-devel/commit/876e3662ff6b78cc6241338c15e3a0cb49edf4e2
- https://bugzilla.redhat.com/show_bug.cgi?id=1070852
- http://secunia.com/advisories/57163
- http://www.openwall.com/lists/oss-security/2014/02/28/8
- http://www.securityfocus.com/bid/65885
Связанные уязвимости
nvd
почти 12 лет назад
Cross-site scripting (XSS) vulnerability in Askbot before 0.7.49 allows remote attackers to inject arbitrary web script or HTML via vectors related to the question search form.
debian
почти 12 лет назад
Cross-site scripting (XSS) vulnerability in Askbot before 0.7.49 allow ...