Oval Definition:	oval:org.opensuse.security:def:20123463
Revision Date: 2021-08-15 Version: 1 Title: CVE-2012-3463 Description: Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/form_tag_helper.rb in Ruby on Rails 3.x before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via the prompt field to the select_tag helper. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-3463 Mitre CVE-2012-3463 SUSE CVE-2012-3463 Platform(s): SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 Product(s): Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND rubygem-actionpack-3_2-3.2.12-0.19 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND rubygem-actionpack-3_2-3.2.12-0.19.1 is installed
BACK