Computer Security
[EN] securityvulns.ru no-pyccku


CUPS crossite scripting
Published:04.05.2014
Source:
SecurityVulns ID:13707
Type:remote
Threat Level:
5/10
Description:Crossite scripting in Web interface.
Affected:CUPS : cups 1.7
CVE:CVE-2014-2856 (Cross-site scripting (XSS) vulnerability in scheduler/client.c in Common Unix Printing System (CUPS) before 1.7.2 allows remote attackers to inject arbitrary web script or HTML via the URL path, related to the is_path_absolute function.)
Original documentdocumentUBUNTU, [USN-2172-1] CUPS vulnerability (04.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod