PT-2015-4363 · Webodf · Webodf

Publicado

2015-05-08

Atualizado

2019-01-30

CVE-2014-9716

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions WebODF versions prior to 0.5.4

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via a file name.

Recommendations For versions prior to 0.5.4, update to version 0.5.4 or later to resolve the issue.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2014-9716

Webodf