Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 1:35 a.m.11 views

CVE-2010-1625

Cross-site scripting XSS vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results page for a search, a different vulnerability than CVE-2009-4497 and CVE-2010-1448...

4.3CVSS5.8AI score0.03221EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2010/08/23 12:0 a.m.27 views

Debian DSA-2092-1 : lxr-cvs - missing input sanitizing

Dan Rosenberg discovered that in lxr-cvs, a code-indexing tool with a web frontend, not enough sanitation of user input is performed; an attacker can take advantage of this and pass script code in order to perform cross-site scripting attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

4.3CVSS5.1AI score0.03221EPSS
Exploits0References8
securityvulns
securityvulns
added 2010/08/21 12:0 a.m.58 views

[SECURITY] [DSA 2092-1] New lxr-cvs packages fix cross-site scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2092-1 [email protected] http://www.debian.org/security/ Sebastien Delafond Aug 17th, 2010 http://www.debian.org/security/faq -...

4.3CVSS5.4AI score0.03221EPSS
Exploits0
Debian
Debian
added 2010/08/17 8:30 p.m.35 views

[SECURITY] [DSA 2092-1] New lxr-cvs packages fix cross-site scripting

------------------------------------------------------------------------ Debian Security Advisory DSA-2092-1 [email protected] http://www.debian.org/security/ Sébastien Delafond Aug 17th, 2010 http://www.debian.org/security/faq -...

4.3CVSS5.6AI score0.03221EPSS
Exploits0
NVD
NVD
added 2010/06/24 12:30 p.m.19 views

CVE-2010-1625

Cross-site scripting XSS vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results page for a search, a different vulnerability than CVE-2009-4497 and CVE-2010-1448...

4.3CVSS5.4AI score0.0189EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2010/06/24 12:30 p.m.17 views

CVE-2010-1625

Cross-site scripting XSS vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results page for a search, a different vulnerability than CVE-2009-4497 and CVE-2010-1448...

4.3CVSS6AI score0.0189EPSS
Exploits0References1
Prion
Prion
added 2010/06/24 12:30 p.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability in lib/LXR/Common.pm in LXR Cross Referencer before 0.9.8 allows remote attackers to inject arbitrary web script or HTML via vectors related to a string in the search page's TITLE element, a different vulnerability than CVE-2009-4497 and CVE-2010-1625...

4.3CVSS5.8AI score0.03221EPSS
Exploits0References14Affected Software1
Cvelist
Cvelist
added 2010/06/23 6:0 p.m.38 views

CVE-2010-1625

Cross-site scripting XSS vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results page for a search, a different vulnerability than CVE-2009-4497 and CVE-2010-1448...

5.4AI score0.0189EPSS
Exploits0References6
CVE
CVE
added 2010/06/23 6:0 p.m.57 views

CVE-2010-1625

CVE-2010-1625 is tied to the lxr-cvs project (Debian DSA-2092-1). The issue is a remote cross-site scripting (XSS) vulnerability caused by insufficient input sanitizing in the code-indexing tool with a web frontend. An attacker could inject script code via user-supplied input processed on the sea...

4.3CVSS5.5AI score0.0189EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder