Lucene search
GoogleOSV:DSA-953-1HistoryJan 24, 2006 - 12:00 a.m.
flyspray - missing input sanitising
2006-01-2400:00:00
Google
osv.dev
8
EPSS
0.008
Percentile
82.1%
Several cross-site scripting vulnerabilities have been discovered in
flyspray, a lightweight bug tracking system, which allows attackers to
insert arbitrary script code into the index page.
The old stable distribution (woody) does not contain flyspray.
For the stable distribution (sarge) this problem has been fixed in
version 0.9.7-2.1.
For the testing (etch) and unstable distribution (sid) this problem has
been fixed in version 0.9.8-5.
We recommend that you upgrade your flyspray package.
References
Related
ubuntucve
ubuntucve
CVE-2005-3334
2005-10-27 00:00:00
securityvulns
securityvulns
debian
debian
[SECURITY] [DSA 953-1] New flyspray packages fix cross-site scripting
2006-01-24 16:33:40
[SECURITY] [DSA 953-1] New flyspray packages fix cross-site scripting
2006-01-24 16:33:40
openvas
openvas
Debian Security Advisory DSA 953-1 (flyspray)
2008-01-17 00:00:00
FreeBSD Ports: flyspray
2008-09-04 00:00:00
Debian: Security Advisory (DSA-953-1)
2008-01-17 00:00:00
exploitdb
exploitdb
Flyspray 0.9 - Multiple Cross-Site Scripting Vulnerabilities
2005-10-26 00:00:00
cvelist
cvelist
CVE-2005-3334
2005-10-27 04:00:00
cve
cve
CVE-2005-3334
2005-10-27 10:02:00
nvd
nvd
CVE-2005-3334
2005-10-27 10:02:00
nessus
nessus
Debian DSA-953-1 : flyspray - missing input sanitising
2006-10-14 00:00:00