메뉴 건너뛰기

GREATUSER

cve

CVE-2017-12097

관리자 2018.01.25 04:00 조회 수 : 40

An exploitable cross site scripting (XSS) vulnerability exists in the filter functionality of the delayed_job_web rails gem version 1.4. A specially crafted URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary javascript on the victim's browser. An attacker can phish an authenticated user to trigger this vulnerability.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12097
번호 제목 글쓴이 날짜 조회 수
467 CVE-2017-12119 관리자 2018.01.25 37
466 CVE-2017-12116 관리자 2018.01.25 48
465 CVE-2017-12113 관리자 2018.01.25 583
464 CVE-2017-14460 관리자 2018.01.25 50
463 CVE-2017-14457 관리자 2018.01.25 45
462 CVE-2017-12112 관리자 2018.01.25 41
461 CVE-2017-12117 관리자 2018.01.25 41
460 CVE-2017-12114 관리자 2018.01.25 32
459 CVE-2017-12115 관리자 2018.01.25 28
» CVE-2017-12097 관리자 2018.01.25 40
457 CVE-2017-14094 관리자 2018.01.25 27
456 CVE-2017-14096 관리자 2018.01.25 38
455 CVE-2017-14095 관리자 2018.01.25 34
454 CVE-2017-14097 관리자 2018.01.25 42
453 CVE-2017-14082 관리자 2018.01.25 28
위로