transmission: cross-site scripting
Package(s): | transmission | CVE #(s): | CVE-2012-4037 | ||||||||
Created: | September 26, 2012 | Updated: | October 30, 2012 | ||||||||
Description: | From the Ubuntu advisory:
Justin C. Klein Keane discovered that the Transmission web client incorrectly escaped certain strings. If a user were tricked into opening a specially crafted torrent file, an attacker could possibly exploit this to conduct cross-site scripting (XSS) attacks. | ||||||||||
Alerts: |
|