Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2020/09/01 4:42 p.m.54 views

Cross-Site Scripting in yui

Affected versions of yui are vulnerable to cross-site scripting in the uploader.swf and io.swf utilities, via script injection in the url. Recommendation YUI has published their recommendation to fix this issue. Their recommendation is to: - Delete self-hosted copies of these files if you are not...

4.3CVSS2.5AI score0.01492EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2020/09/01 4:42 p.m.21 views

GHSA-MJ87-8XF8-FP4W Cross-Site Scripting in yui

Affected versions of yui are vulnerable to cross-site scripting in the uploader.swf and io.swf utilities, via script injection in the url. Recommendation YUI has published their recommendation to fix this issue. Their recommendation is to: - Delete self-hosted copies of these files if you are not...

4.3CVSS5.8AI score0.01492EPSS
Exploits0References8
Node.js
Node.js
added 2017/03/24 5:40 p.m.71 views

Cross-Site Scripting

Overview Affected versions of yui are vulnerable to cross-site scripting in the uploader.swf and io.swf utilities, via script injection in the url. Recommendation YUI has published their recommendation to fix this issue. Their recommendation is to: - Delete self-hosted copies of these files if yo...

4.3CVSS1.6AI score0.01492EPSS
Exploits0Affected Software1
ThreatPost
ThreatPost
added 2014/12/11 1:23 p.m.9 views

Lax Crossdomain Policy Puts Yahoo Mail At Risk

Yahoo has made strides in battening down its security in the last 12 months, most publicly with its decision to enable end-to-end encryption for its email service, turn on SSL by default, and encrypt links between its data centers. There are still some darkened corners of its infrastructure,...

6.8AI score
Exploits0References5
Rows per page
Query Builder