CVE-2011-4193
SUSE Studio Onsite and Studio Extension for System z 1.2 - Cross-Site Scripting via Overlay Files Tab
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in the overlay files tab in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted application, related to cloning.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00015.html
Scores
EPSS
0.0026
EPSS Percentile
49.6%
Details
CWE
CWE-79
Status
published
Products (2)
suse/studio_extension_for_system_z
1.2
suse/studio_onsite
1.2
Published
Apr 16, 2014
Tracked Since
Feb 18, 2026