1 results (0.001 seconds)

CVSS: 4.3EPSS: 4%CPEs: 3EXPL: 0

Cross-site scripting (XSS) vulnerability in FreeStyle Wiki 3.6.2 and earlier, and 3.6.3 dev3 and earlier development versions, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2005-1799. Vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en FreeStyle Wiki 3.6.2 y anteriores, y 3.6.3 dev3 y versiones de desarrollo previas, cuando se visualizan con Internet Explorer, permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de vectores no especificados, una cuestión distinta de CVE-2005-1799. • http://fswiki.org/wiki.pl?page=%CD%FA%CE%F2%2F2008-7-3 http://jvn.jp/en/jp/JVN77432756/index.html http://jvn.jp/jp/JVN77432756/index.html http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000036.html http://secunia.com/advisories/30923 http://www.securityfocus.com/bid/30071 https://exchange.xforce.ibmcloud.com/vulnerabilities/43574 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •