Cross-site scripting (XSS) vulnerability in ZeroClipboard prior to 1.1.4 allows remote malicious users to inject arbitrary web script or HTML via "the clipText returned from the flash object," a different vulnerability than CVE-2013-1808.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zeroclipboard project zeroclipboard |
||
zeroclipboard project zeroclipboard 1.0.5 |