Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Reflected Cross-Site Scripting (XSS) in Flash Version of Flowplayer
Nov 04 2014 06:15PM
subs itguard info
The flash file accept its configuration via a JSON object. This object can be passed directly or via a file.
The old version of this flash file was vulnerable because of loading insecure external flash files. The latest version and the previous ones are also vulnerable because of lack o...
[ more ]
Copyright 2010, SecurityFocus