Security update available for RoboHelp

Friday, August 12 2011 @ 10:52 AM, By Ankur Jain

Summary: An important vulnerability has been identified in RoboHelp and RoboHelp Server. A specially crafted URL could be used to create a cross-site scripting attack on RoboHelp installations. Solution for this is now available.

Affected Software Versions: RoboHelp 9 (versions and earlier), RoboHelp 8, RoboHelp Server 9, and RoboHelp Server 8 for Windows.

Note: Customers using RoboHelp 9 version are not vulnerable to this issue.

Solution: Adobe recommends users update their RoboHelp and/or RoboHelp Server installations by applying the relevant updates using the instructions provided in this Security Bulletin.

Ankur Jain
Product Manager – Technical Communication Suite | RoboHelp
Follow me on Twitter: @ankurjain8


  • By Michael H. - 1:09 PM on August 12, 2011  

    How does this new whutils.js file compare to the one that fixes the SSL over IE issue (where the TOC and Search didn’t work)? Currently we are happy to have those working and I don’t want to mess that up. I guess it would be better to fix the cross-site scripting issue, but we really need to the TOC and Search to work too…

  • Categories

  • Archives

  • Authors

  • Useful Links

  • Recent Comments

    • Dieter Gust: So I found it out myself: C:\Program Files (x86)\Adobe\AdobeFrameMaker201 5\fminit\ditafm\DITA-OT\doc...
    • Dieter Gust: In the DITA-OT 2.1 version a rudimentary HTML5 output is included. Add the following entries in...
    • Dieter Gust: Which fonts do you recommend for Thai and Farsi? As far as I can see special Adobe fonts for these...
    • Bjørn Smalbro: Hi Welcome aboard to the new folks! I do have a couple of questions; 1: I have every sent in my...
    • Dieter Gust: Kapil How can I check the DITA-OT version which is installed with FrameMaker?