CVE-2011-2226

CVE-2011-2226

EPSS 1.2%

Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a pattern listing.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00013.html https://exchange.xforce.ibmcloud.com/vulnerabilities/69278 http://support.novell.com/security/cve/CVE-2011-2226.html http://www.securityfocus.com/bid/49236