Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote authenticated users to inject arbitrary web script or HTML via crafted Wiki content, related to lack of a charset field.
Max CVSS
3.5
EPSS Score
0.26%
Published
2010-06-17
Updated
2010-06-18
Cross-site scripting (XSS) vulnerability in Help Viewer in Apple Mac OS X 10.6 before 10.6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted help: URL, related to "URL parameters in HTML content."
Max CVSS
4.3
EPSS Score
0.35%
Published
2010-06-17
Updated
2010-06-17
Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote attackers to inject arbitrary web script or HTML via a crafted URI that triggers a UTF-7 error page.
Max CVSS
4.3
EPSS Score
0.32%
Published
2010-06-17
Updated
2012-11-06
3 vulnerabilities found