Lucene search

PRIOn knowledge basePRION:CVE-2009-0359

HistoryFeb 17, 2009 - 5:30 p.m.

Cross site scripting

2009-02-1717:30:00

PRIOn knowledge base

www.prio-n.com

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.4%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Samizdat before 0.6.2 allow remote authenticated users to inject arbitrary web script or HTML via the (1) message title or (2) user full name.

CPENameOperatorVersion
samizdatle0.6.1

CPE	Name	Operator	Version
	samizdat	le	0.6.1

References

osvdb.org/52022

samizdat.nongnu.org/release-notes/samizdat-0.6.1-xss-escape-title.patch

www.mail-archive.com/[email protected]/msg00171.html

www.nongnu.org/samizdat/release-notes/samizdat-0.6.2.html

www.securityfocus.com/archive/1/500961/100/0/threaded

www.securityfocus.com/bid/33768