PT-2013-4533 · Filemaker · Filemaker Pro Advanced+1
Publicado
2013-06-10
·
Atualizado
2013-06-11
·
CVE-2013-3640
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
FileMaker Pro versions prior to 12
FileMaker Pro Advanced versions prior to 12
Description
A cross-site scripting (XSS) issue exists in the Instant Web Publish function, allowing remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors.
Recommendations
For FileMaker Pro versions prior to 12, update to version 12 or later to resolve the issue.
For FileMaker Pro Advanced versions prior to 12, update to version 12 or later to resolve the issue.
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Filemaker Pro
Filemaker Pro Advanced