Cross-site scripting (XSS) vulnerability in wserver.ml in SKS Keyserver prior to 1.1.5 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to pks/lookup/undefined1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sks keyserver project sks keyserver |
||
sks keyserver project sks keyserver 1.1.3 |
||
sks keyserver project sks keyserver 1.1.2 |
||
sks keyserver project sks keyserver 1.0.2 |
||
sks keyserver project sks keyserver 0.1.3 |
||
sks keyserver project sks keyserver 0.1.2 |
||
sks keyserver project sks keyserver 0.1.1 |
||
sks keyserver project sks keyserver 1.1.1 |
||
sks keyserver project sks keyserver 1.0.5 |
||
sks keyserver project sks keyserver 1.1.0 |
||
sks keyserver project sks keyserver 1.0.3 |
||
sks keyserver project sks keyserver 0.1.0 |