Yui@2.9.0 Security Vulnerabilities and Issues — Yui@2.9.0 CVE List

Lucene search

YahooYui2.9.0

4 matches found

CVE•added 2012/11/16 12:24 p.m.•169 views

CVE-2012-5883

Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.8.0 through 2.9.0, as used in Bugzilla 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1, allows remote attackers to inject arbitrary web script or HTML via vectors re...

4.3CVSS7AI score0.01868EPSS

CVE•added 2012/11/16 12:24 p.m.•167 views

CVE-2012-5882

Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.5.0 through 2.9.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to uploader.swf, a similar issue to CVE-2010-4208.

4.3CVSS6.9AI score0.01618EPSS

CVE•added 2012/11/16 12:24 p.m.•164 views

CVE-2012-5881

Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.4.0 through 2.9.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to charts.swf, a similar issue to CVE-2010-4207.

4.3CVSS6.9AI score0.01873EPSS

CVE•added 2013/11/13 3:55 p.m.•59 views

CVE-2013-6780

Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 2.5.0 through 2.9.0 allows remote attackers to inject arbitrary web script or HTML via the allowedDomain parameter.

4.3CVSS5.5AI score0.00817EPSS