Description
Cross-site scripting (XSS) vulnerability in BBC Education Text to Speech Internet Enhancer (Betsie) 1.5.11 and earlier allows remote attackers to execute arbitrary web script via parserl.pl.
Affected products
- bbc_education / betsie1.5 – 1.5
- bbc_education / betsie1.5.1 – 1.5.1
- bbc_education / betsie1.5.2 – 1.5.2
- bbc_education / betsie1.5.3 – 1.5.3
- bbc_education / betsie1.5.4 – 1.5.4
- bbc_education / betsie1.5.5 – 1.5.5
- bbc_education / betsie1.5.6 – 1.5.6
- bbc_education / betsie1.5.7 – 1.5.7
- bbc_education / betsie1.5.8 – 1.5.8
- bbc_education / betsie1.5.9 – 1.5.9
- bbc_education / betsie1.5.10 – 1.5.10
- bbc_education / betsie1.5.11 – 1.5.11