2 matches found
CVE-2014-9716
Cross-site scripting XSS vulnerability in WebODF before 0.5.4 allows remote attackers to inject arbitrary web script or HTML via a file name...
CVE-2014-9716
CVE-2014-9716 affects WebODF prior to 0.5.4, enabling a cross-site scripting (XSS) flaw via a file name. Remote attackers can inject arbitrary script/HTML and potentially compromise the victim’s browser session. The connected sources reiterate the same vulnerability description but do not provide...