CVE-2014-8917

NONECVSS 0.0

0.0

Multiple cross-site scripting (XSS) vulnerabilities in (1) dojox/form/resources/uploader.swf (aka upload.swf), (2) dojox/form/resources/fileuploader.swf (aka fileupload.swf), (3) dojox/av/resources/audio.swf, and (4) dojox/av/resources/video.swf in the IBM Dojo Toolkit, as used in IBM Social Media Analytics 1.3 before IF11 and other products, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

🔗 References (14)

psirt@ushttp://secunia.com/advisories/62590
psirt@ushttp://secunia.com/advisories/62837
psirt@ushttp://www-01.ibm.com/support/docview.wss?uid=swg21694693
psirt@ushttp://www-01.ibm.com/support/docview.wss?uid=swg21696013
psirt@ushttp://www.securityfocus.com/bid/72903
psirt@ushttp://www.securitytracker.com/id/1032376
psirt@ushttps://exchange.xforce.ibmcloud.com/vulnerabilities/99303
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/62590
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/62837
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg21694693
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg21696013
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/72903
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1032376
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/99303

Is Your Infrastructure Affected by CVE-2014-8917?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2014-8917

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2014-8917?