Lucene search
+L

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-2934

Malware in sbrugna...

4.3CVSS6.1AI score0.019EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/21 8:21 p.m.10 views

CVE-2009-2947

Cross-site scripting XSS vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages...

4.3CVSS5.8AI score0.019EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.23 views

Debian DSA-1882-1 : xapian-omega - missing input sanitization

It was discovered that xapian-omega, a CGI interface for searching xapian databases, is not properly escaping user-supplied input when printing exceptions. An attacker can use this to conduct cross-site scripting attacks via crafted search queries resulting in an exception and steal potentially...

4.3CVSS5.5AI score0.019EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.16 views

Debian Security Advisory DSA 1882-1 (xapian-omega)

The remote host is missing an update to xapian-omega announced via advisory DSA 1882-1. OpenVAS Vulnerability Test $Id: deb18821.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1882-1 xapian-omega Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft In...

4.3CVSS0.019EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.17 views

FreeBSD Ports: xapian-omega

The remote host is missing an update to the system as announced in the referenced advisory. VID b46f3a1e-a052-11de-a649-000c2955660f OpenVAS Vulnerability Test $ Description: Auto generated from VID b46f3a1e-a052-11de-a649-000c2955660f Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

4.3CVSS6.4AI score0.019EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.16 views

FreeBSD Ports: xapian-omega

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS6.4AI score0.019EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.25 views

Debian: Security Advisory (DSA-1882-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.019EPSS
Exploits0References3
OSV
OSV
added 2009/09/14 4:30 p.m.4 views

CVE-2009-2947

Cross-site scripting XSS vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages...

5.5AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2009/09/14 4:30 p.m.15 views

CVE-2009-2947

Cross-site scripting XSS vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages...

4.3CVSS6AI score0.019EPSS
Exploits0References1
Prion
Prion
added 2009/09/14 4:30 p.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages...

4.3CVSS5.9AI score0.019EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2009/09/14 4:30 p.m.14 views

CVE-2009-2947

Cross-site scripting XSS vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages...

4.3CVSS5.5AI score0.019EPSS
Exploits0References6
OSV
OSV
added 2009/09/14 4:30 p.m.1 views

DEBIAN-CVE-2009-2947

Cross-site scripting XSS vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages...

4.3CVSS5.8AI score0.019EPSS
Exploits0References1
CVE
CVE
added 2009/09/14 4:0 p.m.60 views

CVE-2009-2947

CVE-2009-2947 affects Xapian Omega prior to 1.0.16. The Debian/OSS advisories describe a flaw where xapian-omega does not properly escape user input when printing exceptions, enabling cross-site scripting via crafted CGI parameter values. Affected component: xapian-omega CGI interface; root cause...

4.3CVSS5.5AI score0.019EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2009/09/14 4:0 p.m.26 views

CVE-2009-2947

Cross-site scripting XSS vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages...

4.3CVSS4.1AI score0.019EPSS
Exploits0
Cvelist
Cvelist
added 2009/09/14 4:0 p.m.21 views

CVE-2009-2947

Cross-site scripting XSS vulnerability in Xapian Omega before 1.0.16 allows remote attackers to inject arbitrary web script or HTML via unspecified CGI parameter values, which are sometimes included in exception messages...

5.5AI score0.019EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2009/09/14 12:0 a.m.17 views

FreeBSD : xapian-omega -- XSS vulnerability (b46f3a1e-a052-11de-a649-000c2955660f)

Olly Betts reports : There's a cross-site scripting issue in Omega - exception messages don't currently get HTML entities escaped, but can contain CGI parameter values in some cases. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

4.3CVSS4.9AI score0.019EPSS
Exploits0References3
securityvulns
securityvulns
added 2009/09/10 12:0 a.m.65 views

[SECURITY] [DSA 1882-1] New xapian-omega packages fix cross-site scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1882-1 [email protected] http://www.debian.org/security/ Nico Golde September 9th, 2009 http://www.debian.org/security/faq -...

4.3CVSS0.2AI score0.019EPSS
Exploits0
Debian
Debian
added 2009/09/09 1:30 p.m.46 views

[SECURITY] [DSA 1882-1] New xapian-omega packages fix cross-site scripting

-------------------------------------------------------------------------- Debian Security Advisory DSA-1882-1 [email protected] http://www.debian.org/security/ Nico Golde September 9th, 2009 http://www.debian.org/security/faq -...

4.3CVSS5.9AI score0.019EPSS
Exploits0
OSV
OSV
added 2009/09/09 12:0 a.m.12 views

DSA-1882-1 xapian-omega - cross-site scripting

Bulletin has no description...

4.3CVSS6.3AI score0.019EPSS
Exploits0
FreeBSD
FreeBSD
added 2009/09/09 12:0 a.m.14 views

xapian-omega -- cross-site scripting vulnerability

Olly Betts reports: There's a cross-site scripting issue in Omega - exception messages don't currently get HTML entities escaped, but can contain CGI parameter values in some cases...

4.3CVSS5.8AI score0.019EPSS
Exploits0References1
Rows per page
Query Builder