Flash Tag Cloud And MT-Cumulus Plugin - 'tagcloud' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47845/info The Flash Tag Cloud widget and the MT-Cumulus Plugin are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the brows...

Flash Tag Cloud And MT-Cumulus Plugin - tagcloud Cross-Site Scripting

Flash Tag Cloud And MT-Cumulus Plugin - tagcloud Cross-Site Scripting source: https://www.securityfocus.com/bid/47845/info The Flash Tag Cloud widget and the MT-Cumulus Plugin are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker...

Уязвимость в MT-Cumulus для Movable Type

Здравствуйте 3APA3A! Сообщаю вам о Cross-Site Scripting уязвимости в плагине MT-Cumulus для Movable Type. Данная XSS уязвимость идентична XSS уязвимости в WP-Cumulus, т.к. приложение использует tagcloud.swf разработанный автором WP-Cumulus. Про миллионы флешек tagcloud.swf уязвимых к XSS атакам я...

MT-Cumulus / MT 4 Cross Site Scripting

Hello list! I want to warn you about Cross-Site Scripting vulnerability in plugin MT-Cumulus for Movable Type. ------------------------- Affected products: ------------------------- At first the developer made widget Flash Tag Cloud For MT 4, and later made full-fledged plugin MT-Cumulus for...