Lucene search
Ubuntu.comUB:CVE-2010-1448HistoryJun 24, 2010 - 12:00 a.m.
CVE-2010-1448
2010-06-2400:00:00
ubuntu.com
ubuntu.com
9
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
70.2%
Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR Cross
Referencer before 0.9.8 allows remote attackers to inject arbitrary web
script or HTML via vectors related to a string in the search page’s TITLE
element, a different vulnerability than CVE-2009-4497 and CVE-2010-1625.
Related
openvas
openvas
Debian Security Advisory DSA 2092-1 (lxr-cvs)
2010-08-21 00:00:00
Debian: Security Advisory (DSA-2092-1)
2010-08-21 00:00:00
FreeBSD Ports: lxr
2010-05-14 00:00:00
nessus
nessus
Debian DSA-2092-1 : lxr-cvs - missing input sanitizing
2010-08-23 00:00:00
ubuntucve
ubuntucve
CVE-2010-1625
2010-06-24 00:00:00
CVE-2009-4497
2010-01-07 00:00:00
cve
cve
prion
prion
Cross site scripting
2010-06-24 12:30:00
Cross site scripting
2010-06-24 12:30:00
Cross site scripting
2010-01-07 19:30:00
debian
debian
[SECURITY] [DSA 2092-1] New lxr-cvs packages fix cross-site scripting
2010-08-17 20:31:09
securityvulns
securityvulns
freebsd
freebsd
lxr -- multiple XSS vulnerabilities
2010-01-05 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
70.2%
Related for UB:CVE-2010-1448