MidnightBSD

Advisories for zeroclipboard_project

CVE-2012-6550 MEDIUM

Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via "the clipText returned from the flash object," a different vulnerability than CVE-2013-1808.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
zeroclipboard_project zeroclipboard *
zeroclipboard_project zeroclipboard 1.0.5
CVE-2013-1808 MEDIUM

Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard before 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products, allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: this is might be the same vulnerability as CVE-2013-1463. If so, it is likely that CVE-2013-1463 will be REJECTed.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
zeroclipboard_project zeroclipboard *
zeroclipboard_project zeroclipboard 1.0.5
CVE-2014-1869 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web script or HTML via vectors related to certain SWF query parameters (aka loaderInfo.parameters).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
zeroclipboard_project zeroclipboard *
zeroclipboard_project zeroclipboard 1.3.0
zeroclipboard_project zeroclipboard 1.1.2
zeroclipboard_project zeroclipboard 1.2.3
zeroclipboard_project zeroclipboard 1.1.3
zeroclipboard_project zeroclipboard 1.1.1
zeroclipboard_project zeroclipboard 1.2.0
zeroclipboard_project zeroclipboard 1.0.5
zeroclipboard_project zeroclipboard 1.0.8
zeroclipboard_project zeroclipboard 1.1.0
zeroclipboard_project zeroclipboard 1.2.1
zeroclipboard_project zeroclipboard 1.1.6
redhat openshift *
zeroclipboard_project zeroclipboard 1.1.7
zeroclipboard_project zeroclipboard 1.0.7
zeroclipboard_project zeroclipboard 1.1.4
zeroclipboard_project zeroclipboard 1.1.5
zeroclipboard_project zeroclipboard 1.2.2