Description
Cross-site scripting (XSS) vulnerability in SemanticScuttle before 0.98 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
- christian_weiske / semanticscuttle0.97
- christian_weiske / semanticscuttle0.85 – 0.85
- christian_weiske / semanticscuttle0.86 – 0.86
- christian_weiske / semanticscuttle0.87 – 0.87
- christian_weiske / semanticscuttle0.88 – 0.88
- christian_weiske / semanticscuttle0.89 – 0.89
- christian_weiske / semanticscuttle0.90 – 0.90
- christian_weiske / semanticscuttle0.91 – 0.91
- christian_weiske / semanticscuttle0.92 – 0.92
- christian_weiske / semanticscuttle0.93 – 0.93
- christian_weiske / semanticscuttle0.94 – 0.94
- christian_weiske / semanticscuttle0.95 – 0.95
- christian_weiske / semanticscuttle0.96 – 0.96
References
- MISChttp://www.securityfocus.com/bid/49661
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/69900
- MISChttp://jvndb.jvn.jp/jvndb/JVNDB-2011-000074
- MISChttp://osvdb.org/75585
- MISChttp://jvn.jp/en/jp/JVN28973089/index.html
- MISChttp://sourceforge.net/projects/semanticscuttle/files/SemanticScuttle/v0.98/SemanticScuttle-0.98.0.zip/download
- VENDOR_ADVISORYhttp://secunia.com/advisories/46031