CVE-2015-1159

2015-06-26T06:59:02
ID CVE-2015-1159
Type cve
Reporter NVD
Modified 2017-09-22T21:29:00

Description

Cross-site scripting (XSS) vulnerability in the cgi_puts function in cgi-bin/template.c in the template engine in CUPS before 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter to help/.