Lucene search
GoogleOSV:GHSA-V7Q8-WVVH-C97PHistoryJul 23, 2018 - 7:51 p.m.
Moderate severity vulnerability that affects Zope2
2018-07-2319:51:28
Google
osv.dev
7
EPSS
0.003
Percentile
65.7%
Cross-site scripting (XSS) vulnerability in Zope 2.8.x before 2.8.12, 2.9.x before 2.9.12, 2.10.x before 2.10.11, 2.11.x before 2.11.6, and 2.12.x before 2.12.3 allows remote attackers to inject arbitrary web script or HTML via vectors related to error messages.
References
secunia.com/advisories/38007
www.osvdb.org/61655
www.securityfocus.com/bid/37765
www.vupen.com/english/advisories/2010/0104
exchange.xforce.ibmcloud.com/vulnerabilities/55599
github.com/advisories/GHSA-v7q8-wvvh-c97p
mail.zope.org/pipermail/zope-announce/2010-January/002229.html
nvd.nist.gov/vuln/detail/CVE-2010-1104
Related
openvas
openvas
Zope 'standard_error_message' Cross-Site Scripting Vulnerability
2010-01-20 00:00:00
Zope XSS Vulnerability (Jan 2010)
2010-01-20 00:00:00
Oracle: Security Advisory (ELSA-2012-0151)
2015-10-06 00:00:00
ubuntucve
ubuntucve
CVE-2010-1104
2010-03-25 00:00:00
CVE-2011-4924
2019-11-25 00:00:00
cvelist
cvelist
CVE-2010-1104
2010-03-25 17:00:00
CVE-2011-4924
2019-11-25 17:03:14
github
github
Moderate severity vulnerability that affects Zope2
2018-07-23 19:51:28
Zope XSS Vulnerability
2022-04-22 00:24:16
prion
prion
Cross site scripting
2010-03-25 17:30:00
Cross site scripting
2019-11-25 18:15:00
nvd
nvd
CVE-2010-1104
2010-03-25 17:30:00
CVE-2011-4924
2019-11-25 18:15:11
cve
cve
CVE-2010-1104
2010-03-25 17:30:00
CVE-2011-4924
2019-11-25 18:15:11
nessus
nessus
Scientific Linux Security Update : conga on SL5.x i386/x86_64 (20120221)
2012-08-01 00:00:00
Oracle Linux 5 : conga (ELSA-2012-0151)
2013-07-12 00:00:00
RHEL 5 : conga (RHSA-2012:0151)
2013-01-24 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2019-11-26 03:46:39
redhat
redhat
(RHSA-2012:0151) Moderate: conga security, bug fix, and enhancement update
2012-02-21 00:00:00
osv
osv
Zope XSS Vulnerability
2022-04-22 00:24:16
oraclelinux
oraclelinux
conga security, bug fix, and enhancement update
2012-03-01 00:00:00