Description
Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.8.0 through 2.8.1, as used in Bugzilla 3.7.1 through 3.7.3 and 4.1, allows remote attackers to inject arbitrary web script or HTML via vectors related to swfstore/swfstore.swf.
Remediation
References
Related Vulnerabilities
WordPress Plugin Brizy-Page Builder Security Bypass (2.4.44)
WordPress Plugin SEO by Squirrly SEO Multiple Unspecified Vulnerabilities (6.1.4)
PHP Other Vulnerability (CVE-2002-0229)
WordPress CVE-2012-2399 Vulnerability (CVE-2012-2399)
Oracle Database Server CVE-2013-3760 Vulnerability (CVE-2013-3760)