CVE-2012-2151

描述

Multiple cross-site scripting (XSS) vulnerabilities in SPIP 1.9.x before 1.9.2.o, 2.0.x before 2.0.18, and 2.1.x before 2.1.13 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

受影響套件(2)

• Debian/spipfrom 0, < 2.1.13-1
• Debian/spipfrom 0, < 2.1.1-3squeeze3

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-2151