Back to search
CVE-2012-1245
Published: Apr 27, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in the cleanup_urls function in forum/utils/html.py in OSQA before 1234, and 0.9.0 Beta 3 and earlier, allows remote attackers to inject arbitrary web script or HTML via vectors related to a crafted URI.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://svn.osqa.net/changelog/OSQA/osqa/trunk?cs=1234
x_refsource_CONFIRM
osqa-unspecified-xss(75182)
vdb-entry
x_refsource_XF
JVN#15503729
third-party-advisory
x_refsource_JVN
53259
vdb-entry
x_refsource_BID
JVNDB-2012-000036
third-party-advisory
x_refsource_JVNDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now