Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web script or HTML via vectors related to certain SWF query parameters (aka loaderInfo.parameters).
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-02-08T00:00:00

Updated: 2024-08-06T09:58:15.417Z

Reserved: 2014-02-06T00:00:00

Link: CVE-2014-1869

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-02-08T00:55:06.207

Modified: 2024-11-21T02:05:10.740

Link: CVE-2014-1869

cve-icon Redhat

Severity : Moderate

Publid Date: 2014-01-31T00:00:00Z

Links: CVE-2014-1869 - Bugzilla