Описание
libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libkiwix | fixed | 10.1.0+dfsg-1 | package | |
| libkiwix | not-affected | bullseye | package | |
| libkiwix | not-affected | buster | package |
Примечания
https://github.com/kiwix/libkiwix/issues/728
https://github.com/kiwix/libkiwix/pull/721
EPSS
Процентиль: 51%
0.0028
Низкий
Связанные уязвимости
CVSS3: 6.1
ubuntu
почти 4 года назад
libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0.
CVSS3: 6.1
nvd
почти 4 года назад
libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0.
CVSS3: 6.1
github
почти 4 года назад
libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0.
EPSS
Процентиль: 51%
0.0028
Низкий