Lucene search
RedhatCVELIST:CVE-2009-0026HistoryJan 21, 2009 - 8:00 p.m.
CVE-2009-0026
2009-01-2120:00:00
redhat
www.cve.org
1
Multiple cross-site scripting (XSS) vulnerabilities in Apache Jackrabbit before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via the q parameter to (1) search.jsp or (2) swr.jsp.
References
secunia.com/advisories/33576
securityreason.com/securityalert/4942
www.apache.org/dist/jackrabbit/RELEASE-NOTES-1.5.2.txt
www.securityfocus.com/archive/1/500196/100/0/threaded
www.securityfocus.com/bid/33360
www.vupen.com/english/advisories/2009/0177
exchange.xforce.ibmcloud.com/vulnerabilities/48110
issues.apache.org/jira/browse/JCR-1925
Related
veracode
veracode
Cross-Site Scripting (XSS)
2018-11-09 03:04:23
seebug
seebug
Apache Jackrabbit q参数跨站脚本漏洞
2009-02-02 00:00:00
github
github
Apache Jackrabbit contains Cross-site Scripting
2022-05-02 03:12:28
securityvulns
securityvulns
[Full-disclosure] [ANNOUNCE] Apache Jackrabbit 1.5.2 released
2009-01-20 00:00:00
nessus
nessus
Apache Jackrabbit 'q' Parameter XSS
2009-01-23 00:00:00
prion
prion
Cross site scripting
2009-01-21 20:30:00
cve
cve
CVE-2009-0026
2009-01-21 20:30:00
osv
osv
Apache Jackrabbit contains Cross-site Scripting
2022-05-02 03:12:28
nvd
nvd
CVE-2009-0026
2009-01-21 20:30:00