Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:29364
HistoryMay 06, 2013 - 12:00 a.m.

[SECURITY] [DSA 2651-1] smokeping security update

2013-05-0600:00:00
vulners.com
45
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Debian Security Advisory DSA-2651-1 [email protected]
http://www.debian.org/security/ Salvatore Bonaccorso
March 20, 2013 http://www.debian.org/security/faq

Package : smokeping
Vulnerability : cross-site scripting vulnerability
Problem type : remote
Debian-specific: no
CVE ID : CVE-2012-0790
Debian Bug : 659899

A cross-site scripting vulnerability was discovered in smokeping, a
latency logging and graphing system. Input passed to the "displaymode"
parameter was not properly sanitized. An attacker could use this flaw to
execute arbitrary HTML and script code in a user's browser session in
the context of an affected site.

For the stable distribution (squeeze), this problem has been fixed in
version 2.3.6-5+squeeze1.

For the testing distribution (wheezy), this problem has been fixed in
version 2.6.7-1.

For the unstable distribution (sid), this problem has been fixed in
version 2.6.7-1.

We recommend that you upgrade your smokeping packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlFKNLQACgkQXm3vHE4uylq7CwCgye7/+ER5c0HpU2/5dOBdZuSm
l4gAoKI6RrCumcP3rJDtlDO9mJmdYZUB
=aqLM
-----END PGP SIGNATURE-----

Related

nessus 5
prion 2
openvas 10
fedora 4
debiancve 2
cve 2
ubuntucve 2
debian 1
securityvulns 1
nessus
nessus
Fedora 15 : smokeping-2.4.2-13.fc15 (2012-0813)
2012-02-01 00:00:00
Debian DSA-2651-1 : smokeping - XSS vulnerability
2013-03-21 00:00:00
Fedora 16 : smokeping-2.4.2-16.fc16 (2012-0801)
2012-02-01 00:00:00
prion
prion
Cross site scripting
2012-01-24 18:55:00
Design/Logic Flaw
2019-12-11 13:15:00
openvas
openvas
Fedora Update for smokeping FEDORA-2012-0801
2012-04-02 00:00:00
Debian Security Advisory DSA 2651-1 (smokeping - cross-site scripting vulnerability)
2013-03-20 00:00:00
Fedora Update for smokeping FEDORA-2012-0813
2012-02-01 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: smokeping-2.4.2-16.fc16
2012-01-31 21:56:18
[SECURITY] Fedora 15 Update: smokeping-2.4.2-13.fc15
2012-01-31 22:00:48
[SECURITY] Fedora 18 Update: smokeping-2.6.9-1.fc18
2013-08-15 02:49:30
debiancve
debiancve
CVE-2012-0790
2012-01-24 18:55:00
CVE-2013-4158
2019-12-11 13:15:00
cve
cve
CVE-2012-0790
2012-01-24 18:55:00
CVE-2013-4158
2019-12-11 13:15:00
ubuntucve
ubuntucve
CVE-2012-0790
2012-01-24 00:00:00
CVE-2013-4158
2019-12-11 00:00:00
debian
debian
[SECURITY] [DSA 2651-1] smokeping security update
2013-03-20 22:15:24
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-05-06 00:00:00
JSON
Related for SECURITYVULNS:DOC:29364
nessus5prion2openvas10fedora4debiancve2cve2ubuntucve2debian1securityvulns1