FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to perform cross-site scripting (XSS) attacks via the Swfile parameter.

FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to perform cross-site scripting (XSS) attacks via the Swfile parameter.

CVE-2014-9677 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the Swfile parameter.

Learn more about our Web App Pen Testing.