Lucene search

[email protected]NVD:CVE-2009-0861

HistoryMar 10, 2009 - 2:30 p.m.

CVE-2009-0861

2009-03-1014:30:00

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

65.5%

JSON

Cross-site scripting (XSS) vulnerability in phpDenora before 1.2.3 allows remote attackers to inject arbitrary web script or HTML via an IRC channel name. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

denorastatsphpdenoraRange≤1.2.2

denorastatsphpdenoraMatch0.9.3

denorastatsphpdenoraMatch0.9.4

denorastatsphpdenoraMatch1.0.0

denorastatsphpdenoraMatch1.0.0rc1

denorastatsphpdenoraMatch1.0.0rc2

denorastatsphpdenoraMatch1.0.0rc3

denorastatsphpdenoraMatch1.0.1

denorastatsphpdenoraMatch1.1.0

denorastatsphpdenoraMatch1.1.1

denorastatsphpdenoraMatch1.2.0

denorastatsphpdenoraMatch1.2.1

VendorProductVersionCPE
denorastatsphpdenora*cpe:2.3:a:denorastats:phpdenora:*:*:*:*:*:*:*:*
denorastatsphpdenora0.9.3cpe:2.3:a:denorastats:phpdenora:0.9.3:*:*:*:*:*:*:*
denorastatsphpdenora0.9.4cpe:2.3:a:denorastats:phpdenora:0.9.4:*:*:*:*:*:*:*
denorastatsphpdenora1.0.0cpe:2.3:a:denorastats:phpdenora:1.0.0:*:*:*:*:*:*:*
denorastatsphpdenora1.0.0cpe:2.3:a:denorastats:phpdenora:1.0.0:rc1:*:*:*:*:*:*
denorastatsphpdenora1.0.0cpe:2.3:a:denorastats:phpdenora:1.0.0:rc2:*:*:*:*:*:*
denorastatsphpdenora1.0.0cpe:2.3:a:denorastats:phpdenora:1.0.0:rc3:*:*:*:*:*:*
denorastatsphpdenora1.0.1cpe:2.3:a:denorastats:phpdenora:1.0.1:*:*:*:*:*:*:*
denorastatsphpdenora1.1.0cpe:2.3:a:denorastats:phpdenora:1.1.0:*:*:*:*:*:*:*
denorastatsphpdenora1.1.1cpe:2.3:a:denorastats:phpdenora:1.1.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
denorastats	phpdenora	*	cpe:2.3:a:denorastats:phpdenora::::::::
denorastats	phpdenora	0.9.3	cpe:2.3:a:denorastats:phpdenora:0.9.3:::::::*
denorastats	phpdenora	0.9.4	cpe:2.3:a:denorastats:phpdenora:0.9.4:::::::*
denorastats	phpdenora	1.0.0	cpe:2.3:a:denorastats:phpdenora:1.0.0:::::::*
denorastats	phpdenora	1.0.0	cpe:2.3:a:denorastats:phpdenora:1.0.0:rc1::::::
denorastats	phpdenora	1.0.0	cpe:2.3:a:denorastats:phpdenora:1.0.0:rc2::::::
denorastats	phpdenora	1.0.0	cpe:2.3:a:denorastats:phpdenora:1.0.0:rc3::::::
denorastats	phpdenora	1.0.1	cpe:2.3:a:denorastats:phpdenora:1.0.1:::::::*
denorastats	phpdenora	1.1.0	cpe:2.3:a:denorastats:phpdenora:1.1.0:::::::*
denorastats	phpdenora	1.1.1	cpe:2.3:a:denorastats:phpdenora:1.1.1:::::::*

Rows per page:

1-10 of 121

References

osvdb.org/51981

secunia.com/advisories/33960

sourceforge.net/project/shownotes.php?release_id=661189

www.securityfocus.com/bid/33822

exchange.xforce.ibmcloud.com/vulnerabilities/48799

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

65.5%

JSON

Related for NVD:CVE-2009-0861

cve1 cvelist1 prion1