[LPE-12707] XSS with YUI/AUI's io.swf - Liferay Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Completed
Affects Version/s: 6.1.X EE
Fix Version/s: 6.1.X EE
Component/s: Frontend Infrastructure, Security Vulnerability
Labels:

Description

A cross site scripting (XSS) vulnerability exist with io.swf in YUI/AUI. An attacker can potentially exploit this security vulnerability to insert malicious JavaScript into a page.

Attachments

Activity

People

Assignee:

Preston Crary

Reporter:

Kenneth Chang (Inactive)

Votes:

0 Vote for this issue

Watchers:

1 Start watching this issue

Dates

Created:

04/Sep/14 11:11 AM

Updated:

04/Jul/19 4:30 AM

Resolved:

07/Nov/14 4:01 PM

Packages

Version	Package
6.1.X EE