Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.15 views

Debian Security Advisory DSA 1947-1 (shibboleth-sp, shibboleth-sp2, opensaml2)

The remote host is missing an update to shibboleth-sp, shibboleth-sp2, opensaml2 announced via advisory DSA 1947-1. OpenVAS Vulnerability Test $Id: deb19471.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1947-1 shibboleth-sp, shibboleth-sp2, opensaml2...

2.6CVSS0.5AI score0.01673EPSS
Exploits0
Debian
Debian
added 2009/12/08 3:8 a.m.18 views

[Backports-security-announce] Security Update for Shibboleth packages

Russ Allbery uploaded new packages for xmltooling, opensaml2, shibboleth-sp2, and shibboleth-sp which fixed the following security problems: CVE-2009-3300 The Shibboleth software includes code to perform arbitrary redirections and generates forms containing arbitrary destinations in certain cases...

2.6CVSS0.9AI score0.01673EPSS
Exploits0
Debian
Debian
added 2009/12/08 3:1 a.m.2 views

[Backports-security-announce] Security Update for Shibboleth packages

Russ Allbery uploaded new packages for xmltooling, opensaml2, shibboleth-sp2, and shibboleth-sp which fixed the following security problems: CVE-2009-3300 The Shibboleth software includes code to perform arbitrary redirections and generates forms containing arbitrary destinations in certain cases...

2.6CVSS5.9AI score0.01673EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2009/11/06 3:30 p.m.23 views

CVE-2009-3300

Multiple cross-site scripting XSS vulnerabilities in the Identity Provider IdP 1.3.x before 1.3.4 and 2.x before 2.1.5, and the Service Provider 1.3.x before 1.3.5 and 2.x before 2.3, in Internet2 Middleware Initiative Shibboleth allow remote attackers to inject arbitrary web script or HTML via...

2.6CVSS5.9AI score0.01673EPSS
Exploits0References1
OSV
OSV
added 2009/11/06 3:30 p.m.3 views

CVE-2009-3300

Multiple cross-site scripting XSS vulnerabilities in the Identity Provider IdP 1.3.x before 1.3.4 and 2.x before 2.1.5, and the Service Provider 1.3.x before 1.3.5 and 2.x before 2.3, in Internet2 Middleware Initiative Shibboleth allow remote attackers to inject arbitrary web script or HTML via...

5.5AI score
Exploits0References5
NVD
NVD
added 2009/11/06 3:30 p.m.19 views

CVE-2009-3300

Multiple cross-site scripting XSS vulnerabilities in the Identity Provider IdP 1.3.x before 1.3.4 and 2.x before 2.1.5, and the Service Provider 1.3.x before 1.3.5 and 2.x before 2.3, in Internet2 Middleware Initiative Shibboleth allow remote attackers to inject arbitrary web script or HTML via...

2.6CVSS5.6AI score0.01673EPSS
Exploits0References5
Rows per page
Query Builder