Cross-site scripting (XSS) vulnerability in analyse.php in CAcert 20080921, and possibly other versions prior to 20080928, allows remote malicious users to inject arbitrary web script or HTML via the CN (CommonName) field in the subject of an X.509 certificate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cacert cacert 20080921 |