Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2009-0934

Опубликовано: 18 мар. 2009
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to links and MUC logs.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:process-one:ejabberd:*:*:*:*:*:*:*:*
Версия до 2.0.3 (включая)
cpe:2.3:a:process-one:ejabberd:0.9:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:1.1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:1.1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:1.1.14:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:2.0.0:beta1:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:2.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:2.0.1_2:*:*:*:*:*:*:*
cpe:2.3:a:process-one:ejabberd:2.0.2:*:*:*:*:*:*:*

EPSS

Процентиль: 72%
0.00721
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2009-0934

ubuntu
больше 16 лет назад

Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to links and MUC logs.

redhat логотип

CVE-2009-0934

redhat
почти 17 лет назад

Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to links and MUC logs.

debian логотип

CVE-2009-0934

debian
больше 16 лет назад

Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 allo ...

github логотип

GHSA-v9pf-x8fm-7j69

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to links and MUC logs.

EPSS

Процентиль: 72%
0.00721
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79