메뉴 건너뛰기

GREATUSER

cve

CVE-2017-12097

관리자 2018.01.25 04:00 조회 수 : 11

An exploitable cross site scripting (XSS) vulnerability exists in the filter functionality of the delayed_job_web rails gem version 1.4. A specially crafted URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary javascript on the victim's browser. An attacker can phish an authenticated user to trigger this vulnerability.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12097
번호 제목 글쓴이 날짜 조회 수
227 CVE-2017-2921 관리자 2017.11.09 11
226 CVE-2017-16642 관리자 2017.11.09 11
225 CVE-2017-16646 관리자 2017.11.09 11
224 CVE-2018-5786 관리자 2018.01.25 11
» CVE-2017-12097 관리자 2018.01.25 11
222 CVE-2017-12117 관리자 2018.01.25 11
221 CVE-2017-14460 관리자 2018.01.25 11
220 CVE-2017-15108 관리자 2018.01.25 11
219 CVE-2018-5956 관리자 2018.01.25 11
218 CVE-2017-18047 관리자 2018.01.25 11
217 CVE-2018-1043 관리자 2018.01.25 11
216 CVE-2018-1044 관리자 2018.01.25 11
215 CVE-2018-6002 관리자 2018.01.25 11
214 CVE-2016-0199 관리자 2016.06.17 12
213 CVE-2016-3234 관리자 2016.06.17 12
위로