Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2009-2947

Опубликовано: 14 сент. 2009
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:xapian:omega:*:*:*:*:*:*:*:*
Версия до 1.0.15 (включая)
cpe:2.3:a:xapian:omega:0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.8.5:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.5:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.6:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.7:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.9:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:0.9.10:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.8:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.9:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.10:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.11:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.12:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.13:*:*:*:*:*:*:*
cpe:2.3:a:xapian:omega:1.0.14:*:*:*:*:*:*:*

EPSS

Процентиль: 63%
0.00442
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2009-2947

ubuntu
больше 16 лет назад

Cross-site scripting (XSS) vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages.

debian логотип

CVE-2009-2947

debian
больше 16 лет назад

Cross-site scripting (XSS) vulnerability in Xapian Omega before 1.0.16 ...

github логотип

GHSA-73qv-xhr2-28jm

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages.

EPSS

Процентиль: 63%
0.00442
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79