Lucene search

K

PRIOn knowledge basePRION:CVE-2009-0660

HistoryMar 11, 2009 - 2:19 p.m.

Cross site scripting

2009-03-1114:19:00

PRIOn knowledge base

www.prio-n.com

2

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

72.0%

Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0 before 1.0.10 and 1.1 before 1.1.2 allow remote attackers to inject arbitrary web script or HTML via a (1) profile and (2) blog, a different vulnerability than CVE-2009-0487.

CPENameOperatorVersion
maharaeq1.1.0 beta4
maharaeq1.0.4
maharaeq1.0.1
maharaeq1.0.8
maharaeq1.0.6
maharaeq1.0.9
maharaeq1.0.5
maharaeq1.1.0 alpha3
maharaeq1.0.2
maharaeq1.1.0 beta1

Rows per page:

1-10 of 211

References

mahara.org/interaction/forum/topic.php?id=350

secunia.com/advisories/34222

secunia.com/advisories/34231

wiki.mahara.org/Release_Notes/1.1.2

www.debian.org/security/2009/dsa-1736

www.securityfocus.com/bid/34064

www.vupen.com/english/advisories/2009/0665

exchange.xforce.ibmcloud.com/vulnerabilities/49168

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

72.0%

Related for PRION:CVE-2009-0660

cve2 ubuntucve2 debian1 openvas4 nessus1 securityvulns2 prion1