oss-sec mailing list archives
CVE request: Reflected XSS / Content Spoofing in FlexPaper
From: Francisco Alonso <rs () revskills cz>
Date: Tue, 6 Jan 2015 21:45:13 +0100
Hello, Can a CVE please be assigned to the following issue: FlexPaper Flash viewer Reflected XSS and Content Spoofing via Swfile parameter in FlexPaperViewer.swf file. Fixed via FlexPaper 2.3.1 Release. References: http://blog.flexpaper.org/post/105984224083/flexpaper-2-3-1-release-notes https://code.google.com/p/flexpaper/ http://www.theregister.co.uk/2014/12/23/wikileaks_pdf_viewer_vuln/ http://www.pcworld.com/article/2862812/flaw-in-opensource-pdf-viewer-could-put-wikileaks-users-others-at-risk.html Thanks,
Current thread:
- CVE request: Reflected XSS / Content Spoofing in FlexPaper Francisco Alonso (Jan 06)
- Re: CVE request: Reflected XSS / Content Spoofing in FlexPaper Francisco Alonso (Jan 17)
- Re: CVE request: Reflected XSS / Content Spoofing in FlexPaper cve-assign (Feb 12)