Loading
Cross-site scripting (XSS) vulnerability in FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the Swfile parameter.
Use CWE-79, Flowpaper vendor hub and Flexpaper product page to widen CVE-2014-9677 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2018-11686 and CVE-2014-9678 for nearby disclosures in the same product family.