CVE-2017-6877

CVE-2017-6877

EPSS 1.0%

Cross-site scripting (XSS) vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://framagit.org/luc/lutim/commit/4c0df8f8b10122339b908dcd9b1117348b49dcab https://framagit.org/luc/lutim/issues/38 http://www.securityfocus.com/bid/96855