EUVD-2022-3053

Malicious code in bioql PyPI...

Cross-site Scripting (XSS)

xapian-core is vulnerable to Cross-site Scripting XSS. The vulnerability is caused due to improper handling of HTML escaping by Xapian::MSet::snippet in queryparser/termgeneratorinternal.cc. This allows an attacker to potentially execute arbitrary scripts in the context of a user's web browser wh...

Debian: Security Advisory (DLA-3355-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3355-1] xapian-core bugfix update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3355-1 [email protected] https://www.debian.org/lts/security/ Olly Betts March 18, 2023 https://wiki.debian.org/LTS -...

DLA-3355-1 xapian-core - security update

Bulletin has no description...

Debian dla-3355 : libxapian-dev - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3355 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3355-1 [email protected] https://www.debian.org/lts/security/...

SUSE CVE-2018-0499

A cross-site scripting vulnerability in queryparser/termgeneratorinternal.cc in Xapian xapian-core before 1.4.6 exists due to incomplete HTML escaping by Xapian::MSet::snippet...

new packages: xapian-core

An update is available for xapian-core. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

xapian-core Cross-site Scripting vulnerability

A cross-site scripting vulnerability in queryparser/termgeneratorinternal.cc in Xapian xapian-core before 1.4.6 exists due to incomplete HTML escaping by Xapian::MSet::snippet...

xapian-core Cross-site Scripting vulnerability

A cross-site scripting vulnerability in queryparser/termgeneratorinternal.cc in Xapian xapian-core before 1.4.6 exists due to incomplete HTML escaping by Xapian::MSet::snippet...

xapian-core bug fix and enhancement update

An update is available for xapian-core. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

The vulnerability of the Xapian::MSet::snippet() function in the Xapian search library (xapian-core) allows a hacker to execute cross-site scripts.

The vulnerability of the Xapian::MSet::snippet function “queryparser/termgeneratorinternal.cc” from the Xapian full-text search library xapian-core is related to insufficient protection of the web page structure. Exploiting this vulnerability could allow a malicious actor to execute cross-site...

Fedora 28 : xapian-bindings / xapian-core (2018-3ecacade34)

Update to 1.4.6, Security fix for CVE-2018-0499, fix for notmuch Email indexer Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

Ubuntu: Security Advisory (USN-3709-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 27 : xapian-bindings / xapian-core (2018-62394ac295)

Update to 1.4.6, Security fix for CVE-2018-0499, fix for notmuch Email indexer Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

Fedora Update for xapian-core FEDORA-2018-3ecacade34

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 LTS : Xapian-core vulnerability (USN-3709-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3709-1 advisory. It was discovered that Xapian-core incorrectly handled certain files. An attacker could possibly use this to execute arbitrary code. Tenable has extracted the...

USN-3709-1 xapian-core vulnerability

It was discovered that Xapian-core incorrectly handled certain files. An attacker could possibly use this to execute arbitrary code...

USN-3709-1: Xapian-core vulnerability

It was discovered that Xapian-core incorrectly handled certain files. An attacker could possibly use this to execute arbitrary code...

Xapian xapian-core Cross-Site Scripting Vulnerability

Xapian xapian-core is a Xapian project using C++ language written in open source search engine library . A cross-site scripting vulnerability exists in the queryparser/termgeneratorinternal.cc file in Xapian xapian-core versions prior to 1.4.6, which stems from the 'Xapian::MSet::snippet' functio...