Download
| Alert*
|
oval:org.secpod.oval:def:300411
A vulnerability has been found and corrected in eclipse: Multiple cross-site scripting vulnerabilities in the Help Contents web application in Eclipse IDE before 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the query string to help/index.jsp or help/advanced/content.js ... oval:org.secpod.oval:def:1504521 eclipse: [1:3.6.1-6.13] - Drop patch to remove ant-trax . [1:3.6.1-6.12] - Add two upstream patches to allow for running SDK JUnit tests. [1:3.6.1-6.11] - Bring in line with Fedora. - Remove some stuff that is now done in eclipse-build. - Fix sources URL. - Add PDE dependency on zip for pdebuild scr ... oval:org.secpod.oval:def:500118 The Eclipse software development environment provides a set of tools for C/C++ and Java development. A cross-site scripting flaw was found in the Eclipse Help Contents web application. An attacker could use this flaw to perform a cross-site scripting attack against victims by tricking them into vis ... |
