3 matches found
Debian: Security Advisory (DLA-298-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 298-1] roundup security update
Package : roundup Version : 1.4.15-3+deb6u1 CVE ID : CVE-2012-6130 CVE-2012-6131 CVE-2012-6132 CVE-2012-6133 CVE-2012-6130 Cross-site scripting XSS vulnerability in the history display in Roundup before 1.4.20 allows remote attackers to inject arbitrary web script or HTML via a username, related ...
CVE-2012-6132
CVE-2012-6132 is a reported XSS flaw in Roundup prior to version 1.4.20, exploitable via the otk parameter. The connected records corroborate that Roundup’s web interface accepts arbitrary scripts/HTML through otk, enabling remote script injection and partial integrity impact. Public details in t...