Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1429-1
HistoryDec 11, 2007 - 12:00 a.m.

htdig - cross site scripting

2007-12-1100:00:00
Google
osv.dev
5

0.008 Low

EPSS

Percentile

81.1%

JSON

Michael Skibbe discovered that htdig, a WWW search system for an intranet
or small internet, did not adequately quote values submitted to the search
script, allowing remote attackers to inject arbitrary script or HTML
into specially crafted links.

For the old stable distribution (sarge), this problem was not present.

For the stable distribution (etch), this problem has been fixed in version
1:3.2.0b6-3.1etch1.

For the unstable distribution (sid), this problem has been fixed in version
1:3.2.0b6-4.

We recommend that you upgrade your htdig package.

CPENameOperatorVersion
htdigeq1:3.2.0b6-3.1

Related

openvas 11
veracode 1
nessus 10
redhat 1
ubuntucve 1
nvd 1
oraclelinux 1
debian 1
fedora 3
cvelist 1
cve 1
securityvulns 1
prion 1
debiancve 1
centos 1
openvas
openvas
Fedora Update for htdig FEDORA-2007-3907
2009-02-27 00:00:00
Debian: Security Advisory (DSA-1429-1)
2008-01-17 00:00:00
Oracle: Security Advisory (ELSA-2007-1095)
2015-10-08 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:19:19
nessus
nessus
ht://dig htsearch sort Parameter XSS
2007-11-28 00:00:00
Fedora 7 : htdig-3.2.0b6-12.fc7 (2007-3907)
2007-11-29 00:00:00
Oracle Linux 4 / 5 : htdig (ELSA-2007-1095)
2013-07-12 00:00:00
redhat
redhat
(RHSA-2007:1095) Moderate: htdig security update
2007-12-03 00:00:00
ubuntucve
ubuntucve
CVE-2007-6110
2007-11-23 00:00:00
nvd
nvd
CVE-2007-6110
2007-11-23 20:46:00
oraclelinux
oraclelinux
Moderate: htdig security update
2007-12-04 00:00:00
debian
debian
[SECURITY] [DSA 1429-1] New htdig packages fix cross site scripting
2007-12-11 22:11:41
fedora
fedora
[SECURITY] Fedora 8 Update: htdig-3.2.0b6-13.fc8
2007-11-29 01:46:18
[SECURITY] Fedora Core 6 Update: htdig-3.2.0b6-9.fc6
2007-12-03 15:47:07
[SECURITY] Fedora 7 Update: htdig-3.2.0b6-12.fc7
2007-11-29 01:39:58
cvelist
cvelist
CVE-2007-6110
2007-11-23 20:00:00
cve
cve
CVE-2007-6110
2007-11-23 20:46:00
securityvulns
securityvulns
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2007-12-13 00:00:00
prion
prion
Cross site scripting
2007-11-23 20:46:00
debiancve
debiancve
CVE-2007-6110
2007-11-23 20:46:00
centos
centos
htdig security update
2007-12-03 16:39:25

0.008 Low

EPSS

Percentile

81.1%

JSON
Related for OSV:DSA-1429-1
openvas11veracode1nessus10redhat1ubuntucve1nvd1oraclelinux1debian1fedora3cvelist1cve1securityvulns1prion1debiancve1centos1