Podatność CVE-2012-2300

Podatność CVE-2012-2300

Publikacja: 2012-08-14 Modyfikacja: 2012-08-15

Opis:

Typ:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
2.1/10	2.9/10	3.9/10

Affected software
Ubercart -> Ubercart

http://drupalcode.org/project/ubercart.git/commitdiff/dfd8658

http://drupalcode.org/project/ubercart.git/commitdiff/3e7c0b8

http://drupal.org/node/1547674

http://drupal.org/node/1547508

http://drupal.org/node/1547506

http://www.securityfocus.com/bid/53251

http://www.openwall.com/lists/oss-security/2012/05/03/2

http://www.openwall.com/lists/oss-security/2012/05/03/1

http://secunia.com/advisories/48935