Vulnerabilities / SWFObject library with known vulnerabilities
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
↓
Severity
Low
CWE Name
SWFObject library with known vulnerabilities
CWE ID
CWE-1035
CVSS Score
4.8
Compliance
OWASP TOP10 -> A5, A6
PCI-DSS -> 6.2
PCI-DSS -> 6.2
The application uses an outdated version of the SWFObject library, which has known vulnerabilities.
How to fix
To fix this issue, please update SWFObject to the latest available version on its official website.
Do not forget to update all the SWFObject files you have on the server.