The gforge package in Debian is vulnerable to cross-site scripting due to insufficient input sanitising, fixed in version 4.7~rc2-7lenny2 for the stable distribution (lenny). Upgrade recommended
Reporter | Title | Published | Views | Family All 11 |
---|---|---|---|---|
Prion | Cross site scripting | 24 Nov 200917:30 | – | prion |
OpenVAS | Debian Security Advisory DSA 1937-1 (gforge) | 23 Nov 200900:00 | – | openvas |
OpenVAS | Debian: Security Advisory (DSA-1937-1) | 23 Nov 200900:00 | – | openvas |
UbuntuCve | CVE-2009-3303 | 24 Nov 200900:00 | – | ubuntucve |
CVE | CVE-2009-3303 | 24 Nov 200917:30 | – | cve |
NVD | CVE-2009-3303 | 24 Nov 200917:30 | – | nvd |
securityvulns | [SECURITY] [DSA 1937-1] New gforge packages fix cross-site scripting | 25 Nov 200900:00 | – | securityvulns |
securityvulns | Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | 25 Nov 200900:00 | – | securityvulns |
Cvelist | CVE-2009-3303 | 24 Nov 200917:00 | – | cvelist |
Tenable Nessus | GForge help/tracker.php helpname Parameter XSS | 1 Dec 200900:00 | – | nessus |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Debian | 5 | all | gforge-mta-courier | 4.7~rc2-7lenny2 | gforge-mta-courier_4.7~rc2-7lenny2_all.deb |
Debian | 5 | all | gforge-web-apache | 4.7~rc2-7lenny2 | gforge-web-apache_4.7~rc2-7lenny2_all.deb |
Debian | 4 | all | gforge-ftp-proftpd | 4.5.14-22etch12 | gforge-ftp-proftpd_4.5.14-22etch12_all.deb |
Debian | 4 | all | gforge-mta-exim | 4.5.14-22etch12 | gforge-mta-exim_4.5.14-22etch12_all.deb |
Debian | 4 | all | gforge-mta-postfix | 4.5.14-22etch12 | gforge-mta-postfix_4.5.14-22etch12_all.deb |
Debian | 4 | all | gforge-shell-postgresql | 4.5.14-22etch12 | gforge-shell-postgresql_4.5.14-22etch12_all.deb |
Debian | 5 | all | gforge-ftp-proftpd | 4.7~rc2-7lenny2 | gforge-ftp-proftpd_4.7~rc2-7lenny2_all.deb |
Debian | 5 | all | gforge-lists-mailman | 4.7~rc2-7lenny2 | gforge-lists-mailman_4.7~rc2-7lenny2_all.deb |
Debian | 5 | all | gforge-mta-exim4 | 4.7~rc2-7lenny2 | gforge-mta-exim4_4.7~rc2-7lenny2_all.deb |
Debian | 5 | all | gforge-plugin-scmcvs | 4.7~rc2-7lenny2 | gforge-plugin-scmcvs_4.7~rc2-7lenny2_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo