2 matches found
CVE-2015-1159
CVE-2015-1159 is a cross-site scripting (XSS) flaw in the CUPS web templating engine. The vulnerability exists in the cgi_puts path (cgi-bin/template.c) and allows an attacker to inject arbitrary script/HTML via the QUERY parameter to the help/ page, if the server runs the affected template engin...
CVE-2015-1159
Cross-site scripting XSS vulnerability in the cgiputs function in cgi-bin/template.c in the template engine in CUPS before 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter to help/...