1
Candidate: CVE-2013-7343
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7343
5
https://github.com/flowplayer/flowplayer/commit/27e8f178276c185cbddb4f14c91d4ce7b3865db1
6
https://github.com/flowplayer/flowplayer/issues/381
8
Cross-site scripting (XSS) vulnerability in flowplayer.swf in the Flash
9
fallback feature in Flowplayer HTML5 5.4.3 allows remote attackers to
10
inject arbitrary web script or HTML by using URL encoding within the
11
callback parameter name. NOTE: this vulnerability exists because of an
12
incomplete fix for CVE-2013-7342.
21
upstream_moodle: released (2.5.5)
22
lucid_moodle: ignored (reached end-of-life)
23
precise_moodle: ignored (reached end-of-life)
24
precise/esm_moodle: DNE (precise was needs-triage)
25
quantal_moodle: ignored (reached end-of-life)
26
saucy_moodle: ignored (reached end-of-life)
28
utopic_moodle: ignored (reached end-of-life)
29
vivid_moodle: ignored (reached end-of-life)
30
vivid/stable-phone-overlay_moodle: DNE
31
vivid/ubuntu-core_moodle: DNE
32
wily_moodle: ignored (reached end-of-life)
34
yakkety_moodle: ignored (reached end-of-life)
35
zesty_moodle: ignored (reached end-of-life)