Lucene search
RedhatCVELIST:CVE-2017-15092HistoryNov 27, 2017 - 12:00 a.m.
CVE-2017-15092
2017-11-2700:00:00
CWE-79
redhat
www.cve.org
2
A cross-site scripting issue has been found in the web interface of PowerDNS Recursor from 4.0.0 up to and including 4.0.6, where the qname of DNS queries was displayed without any escaping, allowing a remote attacker to inject HTML and Javascript code into the web interface, altering the content.
CNA Affected
[
{
"product": "PowerDNS Recursor",
"vendor": "PowerDNS",
"versions": [
{
"status": "affected",
"version": "from 4.0.0 up to and including 4.0.6"
}
]
}
]Related
checkpoint_advisories
checkpoint_advisories
nvd
nvd
CVE-2017-15092
2018-01-23 15:29:00
prion
prion
Cross site scripting
2018-01-23 15:29:00
osv
osv
CVE-2017-15092
2018-01-23 15:29:00
debiancve
debiancve
CVE-2017-15092
2018-01-23 15:29:00
ubuntucve
ubuntucve
CVE-2017-15092
2018-01-23 00:00:00
cve
cve
CVE-2017-15092
2018-01-23 15:29:00
alpinelinux
alpinelinux
CVE-2017-15092
2018-01-23 15:29:00
nessus
nessus
PowerDNS Recursor 4.0.x < 4.0.7 Multiple Vulnerabilities
2018-01-19 00:00:00
Fedora 26 : pdns-recursor (2017-1585789772)
2017-12-13 00:00:00
Fedora 25 : pdns-recursor (2017-81fe39ad9f)
2017-12-13 00:00:00
openvas
openvas
PowerDNS Recursor Multiple Vulnerabilities
2017-11-28 00:00:00
Fedora Update for pdns-recursor FEDORA-2017-608b6f5945
2017-12-14 00:00:00
Fedora Update for pdns-recursor FEDORA-2017-81fe39ad9f
2017-12-14 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: pdns-recursor-4.0.7-1.fc27
2017-12-12 11:30:15
[SECURITY] Fedora 26 Update: pdns-recursor-4.0.7-1.fc26
2017-12-12 13:46:26
[SECURITY] Fedora 25 Update: pdns-recursor-4.0.7-1.fc25
2017-12-12 14:40:52
redhatcve
redhatcve
CVE-2017-15090
2022-05-20 22:30:18
CVE-2017-15093
2022-05-20 23:27:39
archlinux
archlinux
[ASA-201711-31] powerdns-recursor: multiple issues
2017-11-27 00:00:00