CVE-2014-9677

CVE-2014-9677

EPSS 1.2%

Cross-site scripting (XSS) vulnerability in FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the Swfile parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://www.openwall.com/lists/oss-security/2015/02/12/11 http://www.theregister.co.uk/2014/12/23/wikileaks_pdf_viewer_vuln/