Use of an outdated SWFUpload vulnerable to XSS

Open yassineaboukir opened this issue 6 years ago • 0 comments

Hi,

OpenVBX is using an outdated version of SWFUpload that is vulnerable to Flash-based Cross-Site Scripting vulnerability (CVE-2012-3414).

It is highly advised upgrading to the latest version to mitigate the security issue.

Regards.

Jun 09 '19 20:06 yassineaboukir