Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2009-3300
HistoryNov 06, 2009 - 3:00 p.m.

CVE-2009-3300

2009-11-0615:00:00
mitre
www.cve.org
3

AI Score

5.6

Confidence

High

EPSS

0.003

Percentile

65.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Identity Provider (IdP) 1.3.x before 1.3.4 and 2.x before 2.1.5, and the Service Provider 1.3.x before 1.3.5 and 2.x before 2.3, in Internet2 Middleware Initiative Shibboleth allow remote attackers to inject arbitrary web script or HTML via URLs that are encountered in redirections, and appear in automatically generated forms.

Related

openvas 4
ubuntucve 1
debiancve 1
nvd 1
cve 1
prion 1
debian 2
nessus 1
openvas
openvas
Shibboleth Service Provider Multiple XSS Vulnerabilities - Windows
2009-11-13 00:00:00
Debian Security Advisory DSA 1947-1 (shibboleth-sp, shibboleth-sp2, opensaml2)
2009-12-14 00:00:00
Debian: Security Advisory (DSA-1947-1)
2009-12-14 00:00:00
ubuntucve
ubuntucve
CVE-2009-3300
2009-11-06 00:00:00
debiancve
debiancve
CVE-2009-3300
2009-11-06 15:30:00
nvd
nvd
CVE-2009-3300
2009-11-06 15:30:00
cve
cve
CVE-2009-3300
2009-11-06 15:30:00
prion
prion
Cross site scripting
2009-11-06 15:30:00
debian
debian
[Backports-security-announce] Security Update for Shibboleth packages
2009-12-08 03:08:05
[SECURITY] [DSA 1947-1] New Shibboleth packages fix cross-site scripting
2009-12-07 22:59:02
nessus
nessus
Debian DSA-1947-1 : shibboleth-sp, shibboleth-sp2, opensaml2 - missing input sanitising
2010-02-24 00:00:00

AI Score

5.6

Confidence

High

EPSS

0.003

Percentile

65.3%

JSON
Related for CVELIST:CVE-2009-3300
openvas4ubuntucve1debiancve1nvd1cve1prion1debian2nessus1