Lucene search
HistoryOct 03, 2022 - 4:24 p.m.
CVE-2009-4497
cve
2009
4497
cross-site scripting
xss
lxr cross referencer
remote attackers
web script
html
ident program
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.4%
Cross-site scripting (XSS) vulnerability in LXR Cross Referencer 0.9.5 and 0.9.6 allows remote attackers to inject arbitrary web script or HTML via the i parameter to the ident program.
Affected configurations
Node
malcom_boxlxr_cross_referencerMatch0.9.5
ORmalcom_boxlxr_cross_referencerMatch0.9.6
Related
freebsd
freebsd
lxr -- multiple XSS vulnerabilities
2010-01-05 00:00:00
cvelist
cvelist
openvas
openvas
FreeBSD Ports: lxr
2010-05-14 00:00:00
FreeBSD Ports: lxr
2010-05-14 00:00:00
Debian: Security Advisory (DSA-2092-1)
2010-08-21 00:00:00
ubuntucve
ubuntucve
prion
prion
Cross site scripting
2010-01-07 19:30:00
Cross site scripting
2010-06-24 12:30:00
Cross site scripting
2010-06-24 12:30:00
nvd
nvd
nessus
nessus
FreeBSD : lxr -- multiple XSS vulnerabilities (0491d15a-5875-11df-8d80-0015587e2cc1)
2010-05-07 00:00:00
Debian DSA-2092-1 : lxr-cvs - missing input sanitizing
2010-08-23 00:00:00
cve
cve
CVE-2010-1448
2010-06-24 12:30:01
CVE-2010-1625
2022-10-03 16:21:00
securityvulns
securityvulns
debian
debian
[SECURITY] [DSA 2092-1] New lxr-cvs packages fix cross-site scripting
2010-08-17 20:30:57
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.4%
Related for CVE-2009-4497