2 matches found
DEBIAN-CVE-2014-3207
Cross-site scripting XSS vulnerability in wserver.ml in SKS Keyserver before 1.1.5 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to pks/lookup/undefined1...
CVE-2014-3207
CVE-2014-3207 is an XSS vulnerability in SKS Keyserver (wserver.ml) exploitable via PATH_INFO to pks/lookup/undefined1, affecting SKS before v1.1.5. Connected documents confirm the affected package SKS (Fedora 19/20) and indicate a vendor fix upgrading to 1.1.5. The Fedora advisories (FEDORA-2014...