4 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script...
CVE-2017-6877
Cross-site scripting XSS vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script...
CVE-2017-6877
CVE-2017-6877 affects the image-hosting app Lutim (versions up to 0.7.1). The vulnerability is an XSS in SVG file handling , allowing remote attackers to inject arbitrary script into a user’s browser when the affected SVG is processed/viewed. The provided documents do not specify the exact root c...
CVE-2017-6877
Cross-site scripting XSS vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script...