Security Advisory

CVE-2013-2138

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-10-10 00:00:00

Last updated 2024-09-16 18:56:18

Assigner redhat

State PUBLISHED

Description

The (1) uploadify and (2) flowplayer SWF files in Gallery 3 before 3.0.8 do not properly remove query parameters and fragments, which allows remote attackers to have an unspecified impact via a replay attack.

← Browse all CVEs View on cve.org ↗