Computer Security
[EN] securityvulns.ru no-pyccku


ejabberd crossite scripting
Published:18.04.2009
Source:
SecurityVulns ID:9854
Type:remote
Threat Level:
5/10
Description:Crossite scripting with server log.
Affected:EJABBERD : ejabberd 2.0
CVE:CVE-2009-0934 (Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to links and MUC logs.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1774-1] New ejabberd packages fix cross-site scripting (18.04.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod