CVE-2015-1032
21.01.2015, 15:28
Cross-site scripting (XSS) vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to /search.
Vendor | Product | Version |
---|---|---|
kiwix | kiwix | 𝑥 ≤ 0.9 |
𝑥
= Vulnerable software versions

Debian Releases

Ubuntu Releases
References