Cross-site scripting (XSS) vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies.
Name | Vendor | Start Version | End Version |
---|---|---|---|
W3m | W3m | 0.3.2 (including) | 0.3.2 (including) |