|
|
Subscribe / Log in / New account

transmission: cross-site scripting

Package(s):transmission CVE #(s):CVE-2012-4037
Created:September 26, 2012 Updated:October 30, 2012
Description: From the Ubuntu advisory:

Justin C. Klein Keane discovered that the Transmission web client incorrectly escaped certain strings. If a user were tricked into opening a specially crafted torrent file, an attacker could possibly exploit this to conduct cross-site scripting (XSS) attacks.

Alerts:
Mageia MGASA-2012-0314 transmission 2012-10-29
Ubuntu USN-1584-1 transmission 2012-09-26

to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds