EUVD-2009-3874

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Multiple XSS vulnerabilities in ManageEngine Netflow Analyzer 7.5 allow remote script injection.

Reporter	Title	Published	Views	Family All 9
CVE	CVE-2009-3903	6 Nov 200915:00	–	cve
Cvelist	CVE-2009-3903	6 Nov 200915:00	–	cvelist
Debian	[SECURITY] [DSA 1941-1] New poppler packages fix several vulnerabilities	25 Nov 200922:37	–	debian
Tenable Nessus	Debian DSA-1941-1 : poppler - several vulnerabilities	24 Feb 201000:00	–	nessus
NVD	CVE-2009-3903	6 Nov 200915:30	–	nvd
OpenVAS	Debian Security Advisory DSA 1941-1 (poppler)	3 Dec 200900:00	–	openvas
Packet Storm	Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2 XSS	8 Feb 201900:00	–	packetstorm
Prion	Cross site scripting	6 Nov 200915:30	–	prion
Prion	Cross site scripting	21 Mar 201916:01	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "4f4423ae-6825-3b7b-9342-76d8d96c380a",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "d1e7c34d-de89-3188-8f44-f2fa3b4ee35c",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
debian	www.debian.org/security/2009/dsa-1941
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2009-3903
osvdb	www.osvdb.org/55772
securityfocus	www.securityfocus.com/bid/35630
secunia	www.secunia.com/advisories/35105
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/51630
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.1Medium risk

Vulners AI Score6.1

CVSS 24.3

EPSS0.00256