RSS   Vulnerabilities for 'Fusion charts'   RSS

2009-02-04
 
CVE-2008-6060

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by InfoSoft FusionCharts allows remote attackers to inject arbitrary additional SWF content via a URL in the SRC attribute of an IMG element in the dataURL parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top