CVE-2008-6060

Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by InfoSoft FusionCharts allows remote attackers to inject arbitrary additional SWF content via a URL in the SRC attribute of an IMG element in the dataURL parameter.
Configurations

Configuration 1

cpe:2.3:a:infosoftglobal:fusion_charts:*:*:*:*:*:*:*:*

Information

Published : 2009-02-05 01:30

Updated : 2018-10-11 08:56


NVD link : CVE-2008-6060

Mitre link : CVE-2008-6060

Products Affected
No products.
CWE