Design/Logic Flaw

2019-10-2815:15:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.1%

pootle 2.0.5 has XSS via ‘match_names’ parameter

CPENameOperatorVersion
pootleeq<= 2.0.5-0.2

CPE	Name	Operator	Version
	pootle	eq	<= 2.0.5-0.2

References

access.redhat.com/security/cve/cve-2010-4245

bugs.debian.org/cgi-bin/bugreport.cgi?bug=604060

bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4245

security-tracker.debian.org/tracker/CVE-2010-4245