Lucene search
PRIOn knowledge basePRION:CVE-2018-1000528HistoryJun 26, 2018 - 4:29 p.m.
Cross site scripting
2018-06-2616:29:00
PRIOn knowledge base
www.prio-n.com
4
GONICUS GOsa version before commit 56070d6289d47ba3f5918885954dcceb75606001 contains a Cross Site Scripting (XSS) vulnerability in change password form (html/password.php, #308) that can result in injection of arbitrary web script or HTML. This attack appear to be exploitable via the victim must open a specially crafted web page. This vulnerability appears to have been fixed in after commit 56070d6289d47ba3f5918885954dcceb75606001.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 9.0 |
Related
openvas
openvas
Debian: Security Advisory (DSA-4239-1)
2018-07-02 00:00:00
Debian: Security Advisory (DLA-1436-1)
2018-07-22 00:00:00
Ubuntu: Security Advisory (USN-4609-1)
2020-10-29 00:00:00
debian
debian
[SECURITY] [DLA 1436-1] gosa security update
2018-07-20 22:07:02
[SECURITY] [DSA 4239-1] gosa security update
2018-07-03 21:05:33
cvelist
cvelist
CVE-2018-1000528
2018-06-26 16:00:00
debiancve
debiancve
CVE-2018-1000528
2018-06-26 16:29:01
nvd
nvd
CVE-2018-1000528
2018-06-26 16:29:01
nessus
nessus
Debian DSA-4239-1 : gosa - security update
2018-07-05 00:00:00
Debian DLA-1436-1 : gosa security update
2018-07-23 00:00:00
Ubuntu 16.04 LTS : GOsa vulnerabilities (USN-4609-1)
2020-10-29 00:00:00
osv
osv
gosa - security update
2018-07-21 00:00:00
gosa - security update
2018-07-03 00:00:00
CVE-2018-1000528
2018-06-26 16:29:01
ubuntucve
ubuntucve
CVE-2018-1000528
2018-06-26 00:00:00
cve
cve
CVE-2018-1000528
2018-06-26 16:29:01
ubuntu
ubuntu
GOsa vulnerabilities
2020-10-28 00:00:00