A cross-site scripting vulnerability in queryparser/termgenerator_internal.cc in Xapian xapian-core before 1.4.6 exists due to incomplete HTML escaping by Xapian::MSet::snippet().
CPE | Name | Operator | Version |
---|---|---|---|
ubuntu_linux | eq | 17.10 | |
ubuntu_linux | eq | 18.04 | |
xapian-core | lt | 1.4.6 |