3 matches found
iThoughtsHD Map名跨站脚本漏洞
Bugtraq ID:66431 CVE ID:CVE-2014-1826 iThoughtsHD是一款针对iPad设计的超实用的思维导图软件。 iPAD设备上的iThoughtsHD app 4.19存在跨站脚本漏洞,当使用WiFi传输功能时,允许远程攻击者利用漏洞通过特制的map名注入任意WEB脚本或HTML。当恶意数据被查看时,可获取敏感信息或劫持用户会话。 0 iThoughtsHD app 4.19 for iOS 目前没有详细解决方案提供: http://www.ithoughts.co.uk/iThoughtsHD/Welcome.html?...
CVE-2014-1826
The CVE-2014-1826 entry concerns iThoughtsHD for iOS (iPad) version 4.19, where the WiFi Transfer feature allows cross-site scripting via a crafted map name. The vulnerability is an XSS in the map name handling, enabling remote attackers to inject arbitrary web script or HTML when the map name is...
CVE-2014-1826
Cross-site scripting XSS vulnerability in the iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to inject arbitrary web script or HTML via a crafted map name...