MidnightBSD

Advisories for glucose

CVE-2012-0313 MEDIUM

Cross-site scripting (XSS) vulnerability in glucose 2 before stage 6.2 allows remote attackers to inject arbitrary web script or HTML via an RSS feed.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
glucose glucose_2 stage6
glucose glucose_2 *
glucose glucose_2 beta_stage_5
glucose glucose_2 beta_stage_5.1