EUVD-2015-1176

Malware in sbrugna...

Fedora: Security Advisory for libkiwix (FEDORA-2022-d0fe2a444a)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: libkiwix-10.1.0-1.fc35

The Kiwix library provides the Kiwix software core. It contains the code shared by all Kiwix ports...

[SECURITY] Fedora 36 Update: libkiwix-10.1.0-1.fc36

The Kiwix library provides the Kiwix software core. It contains the code shared by all Kiwix ports...

Fedora: Security Advisory for libkiwix (FEDORA-2022-1f0643b63a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 33 Update: kiwix-desktop-2.0.5-3.fc33

The Kiwix-desktop is a view/manager of zim files for GNU/Linux and Windows. You can download and view your zim files as you which...

Fedora: Security Advisory for kiwix-desktop (FEDORA-2021-aa347d2b99)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 33 : kiwix-desktop (2021-aa347d2b99)

The remote Fedora 33 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-aa347d2b99 advisory. - Always use HTTPS for the catalog downloads. FEDORA-2021-aa347d2b99 Note that Nessus has not tested for this issue but has instead relied only on the...

Kiwix Server 'pattern' Parameter Cross-Site Scripting Vulnerability

Kiwix is prone to an XSS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.805131";...

CVE-2015-1032 Kiwix Cross-Site Scripting Vulnerability

CVE-2015-1032 A cross-site scripting vulnerability in the "Kiwix" zim file reader was discovered by Emmanuel Engelhart on 31 October 2014, and was reported on Sourceforge here: http://sourceforge.net/p/kiwix/bugs/763/ This vulnerability does not affect most users of the program, only those using...

Kiwix Cross-Site Scripting Vulnerability

Kiwix is a free application for offline browsing of Wikipedia. Kiwix suffers from a cross-site scripting vulnerability due to the program failing to properly filter user-supplied input. An attacker could use this vulnerability to execute arbitrary script code or steal cookie-based authentication...

CVE-2015-1032

Cross-site scripting XSS vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to /search...

DEBIAN-CVE-2015-1032

Cross-site scripting XSS vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to /search...

CVE-2015-1032

Cross-site scripting XSS vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to /search...

CVE-2015-1032

Cross-site scripting XSS vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to /search...

Cross site scripting

Cross-site scripting XSS vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to /search...

CVE-2015-1032

Kiwix Server's XSS vulnerability (CVE-2015-1032) affects kiwix-serve via the pattern parameter on /search, enabling arbitrary script injection when processing user input. Root cause: unsanitized input in the search pattern leads to cross-site scripting in clients viewing the response. Impact is l...

CVE-2015-1032

Cross-site scripting XSS vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to /search...

CVE-2015-1032

Cross-site scripting XSS vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to /search...