Lucene search
Ubuntu.comUB:CVE-2013-6780HistoryNov 13, 2013 - 12:00 a.m.
CVE-2013-6780
2013-11-1300:00:00
ubuntu.com
ubuntu.com
23
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.002
Percentile
64.9%
Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader
component in Yahoo! YUI 2.5.0 through 2.9.0 allows remote attackers to
inject arbitrary web script or HTML via the allowedDomain parameter.
Notes
| Author | Note |
|---|---|
| jdstrand | maas uses an embedded copy of yui 3.4.1 in 12.04 and portions of yui3 in 12.10 and higher |
Related
nvd
nvd
CVE-2013-6780
2013-11-13 15:55:04
prion
prion
Cross site scripting
2013-11-13 15:55:00
cve
cve
CVE-2013-6780
2013-11-13 15:55:04
packetstorm
packetstorm
Cisco Ironport AsyncOS Cross Site Scripting
2015-02-25 00:00:00
cvelist
cvelist
CVE-2013-6780
2013-11-13 15:00:00
nessus
nessus
Fedora 19 : moodle-2.4.7-1.fc19 (2013-21397)
2013-11-25 00:00:00
Fedora 20 : moodle-2.5.3-1.fc20 (2013-21312)
2013-11-25 00:00:00
Fedora 18 : moodle-2.3.10-1.fc18 (2013-21354)
2013-11-25 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: moodle-2.5.3-1.fc20
2013-11-24 03:29:31
[SECURITY] Fedora 18 Update: moodle-2.3.10-1.fc18
2013-11-23 19:35:25
[SECURITY] Fedora 19 Update: moodle-2.4.7-1.fc19
2013-11-23 19:49:20
openvas
openvas
Fedora Update for moodle FEDORA-2013-21397
2013-11-26 00:00:00
Fedora Update for moodle FEDORA-2013-21354
2013-11-26 00:00:00
Fedora Update for moodle FEDORA-2013-21397
2013-11-26 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.002
Percentile
64.9%
Related for UB:CVE-2013-6780