exploitDog

GHSA-xf6r-r485-49mr

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.4.0 through 2.8.1, as used in Bugzilla, Moodle, and other products, allows remote attackers to inject arbitrary web script or HTML via vectors related to charts/assets/charts.swf.

Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.4.0 through 2.8.1, as used in Bugzilla, Moodle, and other products, allows remote attackers to inject arbitrary web script or HTML via vectors related to charts/assets/charts.swf.

Ссылки

EPSS

Процентиль: 82%

0.01873

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2010-4207

ubuntu

больше 14 лет назад

Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.4.0 through 2.8.1, as used in Bugzilla, Moodle, and other products, allows remote attackers to inject arbitrary web script or HTML via vectors related to charts/assets/charts.swf.

CVE-2010-4207

nvd

больше 14 лет назад

Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.4.0 through 2.8.1, as used in Bugzilla, Moodle, and other products, allows remote attackers to inject arbitrary web script or HTML via vectors related to charts/assets/charts.swf.

CVE-2010-4207

debian

больше 14 лет назад

Cross-site scripting (XSS) vulnerability in the Flash component infras ...

EPSS

Процентиль: 82%

0.01873

Низкий

CVE ID

Дефекты

CWE-79