exploitDog

CVE-2013-7342

Опубликовано: 24 мар. 2014

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in flowplayer.swf in the Flash fallback feature in Flowplayer HTML5 5.4.1 allows remote attackers to inject arbitrary web script or HTML via the callback parameter, a related issue to CVE-2013-7341.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:flowplayer:flowplayer_html5:5.4.1:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.00318

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

CVE-2013-7342

ubuntu

почти 12 лет назад

Cross-site scripting (XSS) vulnerability in flowplayer.swf in the Flash fallback feature in Flowplayer HTML5 5.4.1 allows remote attackers to inject arbitrary web script or HTML via the callback parameter, a related issue to CVE-2013-7341.

GHSA-pw7f-5h97-w3r9

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in flowplayer.swf in the Flash fallback feature in Flowplayer HTML5 5.4.1 allows remote attackers to inject arbitrary web script or HTML via the callback parameter, a related issue to CVE-2013-7341.

EPSS

Процентиль: 54%

0.00318

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79