Multiple cross-site scripting (XSS) vulnerabilities in Zend Framework 2.0.x prior to 2.0.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified input to (1) Debug, (2) Feed\PubSubHubbub, (3) Log\Formatter\Xml, (4) Tag\Cloud\Decorator, (5) Uri, (6) View\Helper\HeadStyle, (7) View\Helper\Navigation\Sitemap, or (8) View\Helper\Placeholder\Container\AbstractStandalone, related to Escaper.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zend zend framework |
||
fedoraproject fedora 16 |
||
fedoraproject fedora 17 |
||
redhat enterprise linux 6.0 |