Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-2937HistoryOct 03, 2022 - 4:24 p.m.
CVE-2009-2937
2022-10-0316:24:07
Debian Security Bug Tracker
security-tracker.debian.org
8
cross-site scripting
planet 2.0
planet venus
img element
feed
web script
html
vulnerability
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.008
Percentile
81.6%
Cross-site scripting (XSS) vulnerability in Planet 2.0 and Planet Venus allows remote attackers to inject arbitrary web script or HTML via the SRC attribute of an IMG element in a feed.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | planet-venus | < 0~bzr116-1 | planet-venus_0~bzr116-1_all.deb |
Related
fedora
fedora
[SECURITY] Fedora 11 Update: planet-2.0-10.fc11
2009-09-15 07:44:01
[SECURITY] Fedora 10 Update: planet-2.0-10.fc10
2009-09-15 07:48:29
exploitdb
exploitdb
Planet 2.0 - HTML Injection
2009-09-11 00:00:00
redhatcve
redhatcve
CVE-2009-2937
2019-10-04 22:03:55
cvelist
cvelist
CVE-2009-2937
2009-09-18 10:00:00
nvd
nvd
CVE-2009-2937
2009-09-18 10:30:01
prion
prion
Cross site scripting
2009-09-18 10:30:00
nessus
nessus
Fedora 10 : planet-2.0-10.fc10 (2009-9601)
2009-09-16 00:00:00
Fedora 11 : planet-2.0-10.fc11 (2009-9575)
2009-09-16 00:00:00
openvas
openvas
Fedora Core 10 FEDORA-2009-9601 (planet)
2009-09-15 00:00:00
Fedora Core 11 FEDORA-2009-9575 (planet)
2009-09-15 00:00:00
Fedora Core 11 FEDORA-2009-9575 (planet)
2009-09-15 00:00:00
cve
cve
CVE-2009-2937
2009-09-18 10:30:01
ubuntucve
ubuntucve
CVE-2009-2937
2009-09-18 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.008
Percentile
81.6%
Related for DEBIANCVE:CVE-2009-2937