Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-2937HistoryOct 03, 2022 - 4:24 p.m.
CVE-2009-2937
2022-10-0316:24:07
Debian Security Bug Tracker
security-tracker.debian.org
7
cross-site scripting
planet 2.0
planet venus
img element
feed
web script
html
vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.007 Low
EPSS
Percentile
79.7%
Cross-site scripting (XSS) vulnerability in Planet 2.0 and Planet Venus allows remote attackers to inject arbitrary web script or HTML via the SRC attribute of an IMG element in a feed.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | planet-venus | < 0~bzr116-1 | planet-venus_0~bzr116-1_all.deb |
Related
redhatcve
redhatcve
CVE-2009-2937
2019-10-04 22:03:55
cvelist
cvelist
CVE-2009-2937
2022-10-03 16:24:07
cve
cve
CVE-2009-2937
2022-10-03 16:24:07
nessus
nessus
Fedora 10 : planet-2.0-10.fc10 (2009-9601)
2009-09-16 00:00:00
Fedora 11 : planet-2.0-10.fc11 (2009-9575)
2009-09-16 00:00:00
openvas
openvas
Fedora Core 10 FEDORA-2009-9601 (planet)
2009-09-15 00:00:00
Fedora Core 11 FEDORA-2009-9575 (planet)
2009-09-15 00:00:00
Fedora Core 11 FEDORA-2009-9575 (planet)
2009-09-15 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: planet-2.0-10.fc10
2009-09-15 07:48:29
[SECURITY] Fedora 11 Update: planet-2.0-10.fc11
2009-09-15 07:44:01
prion
prion
Cross site scripting
2009-09-18 10:30:00
nvd
nvd
CVE-2009-2937
2009-09-18 10:30:01
ubuntucve
ubuntucve
CVE-2009-2937
2009-09-18 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.007 Low
EPSS
Percentile
79.7%
Related for DEBIANCVE:CVE-2009-2937