Description
Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 2.5.0 through 2.9.0 allows remote attackers to inject arbitrary web script or HTML via the allowedDomain parameter.
Remediation
References
Related Vulnerabilities
Oracle Application Server CVE-2008-7234 Vulnerability (CVE-2008-7234)
Oracle Application Server Other Vulnerability (CVE-2002-1632)
MySQL CVE-2024-21055 Vulnerability (CVE-2024-21055)
WordPress Plugin Events Manager Multiple Cross-Site Scripting Vulnerabilities (5.3.3)
Moodle Improper Input Validation Vulnerability (CVE-2013-2083)