Search criteria
15 vulnerabilities found for grani by fenrir
FKIE_CVE-2010-3919
Vulnerability from fkie_nvd - Published: 2010-12-10 19:00 - Updated: 2025-04-11 00:51
Severity ?
Summary
Fenrir Grani 4.5 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fenrir:grani:*:*:*:*:*:*:*:*",
"matchCriteriaId": "57F1559D-34D8-404C-8C98-DE203DE756E5",
"versionEndIncluding": "4.5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E28BA839-EBCA-461A-AE44-2CFBBE006341",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "4B0418CF-47E2-4C32-93C1-36EA37833CF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D2A9ACA9-3D93-4C8C-85F2-8E977ACAD8BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "46CBC2EB-1D53-4ADA-97EA-81D8C67EFC90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "439C0D2A-DA16-426F-8EF8-AA71B6158CE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8F26FDE1-515D-434A-A68E-0F0055685EC7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A88A00FB-3224-4CBB-B358-F58E4B8F89FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "418140BC-4068-4E62-85CD-2E14A3564792",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.4:*:*:*:*:*:*:*",
"matchCriteriaId": "EF0FD50B-78AA-4B5E-91E9-CAFC240020D6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Fenrir Grani 4.5 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site."
},
{
"lang": "es",
"value": "Fenrir Grani 4.5 y versiones anteriores no impide la interacci\u00f3n entre las secuencias de comandos web y el portapapeles, lo que permite a atacantes remotos leer o modificar el contenido del portapapeles a trav\u00e9s de un sitio web dise\u00f1ado para tal fin."
}
],
"id": "CVE-2010-3919",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2010-12-10T19:00:05.767",
"references": [
{
"source": "vultures@jpcert.or.jp",
"url": "http://jvn.jp/en/jp/JVN76662040/index.html"
},
{
"source": "vultures@jpcert.or.jp",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000058.html"
},
{
"source": "vultures@jpcert.or.jp",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/42428"
},
{
"source": "vultures@jpcert.or.jp",
"url": "http://www.fenrir.co.jp/blog/2010/11/post_47.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvn.jp/en/jp/JVN76662040/index.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000058.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/42428"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.fenrir.co.jp/blog/2010/11/post_47.html"
}
],
"sourceIdentifier": "vultures@jpcert.or.jp",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2010-3163
Vulnerability from fkie_nvd - Published: 2010-10-25 20:01 - Updated: 2025-04-11 00:51
Severity ?
Summary
Untrusted search path vulnerability in Fenrir Sleipnir before 2.9.5 and Grani before 4.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| fenrir | sleipnir | * | |
| fenrir | sleipnir | 2.5.0 | |
| fenrir | sleipnir | 2.5.1 | |
| fenrir | sleipnir | 2.5.2 | |
| fenrir | sleipnir | 2.5.3 | |
| fenrir | sleipnir | 2.5.4 | |
| fenrir | sleipnir | 2.5.5 | |
| fenrir | sleipnir | 2.5.6 | |
| fenrir | sleipnir | 2.5.7 | |
| fenrir | sleipnir | 2.5.8 | |
| fenrir | sleipnir | 2.5.9 | |
| fenrir | sleipnir | 2.5.10 | |
| fenrir | sleipnir | 2.5.11 | |
| fenrir | sleipnir | 2.5.12 | |
| fenrir | sleipnir | 2.5.13 | |
| fenrir | sleipnir | 2.5.14 | |
| fenrir | sleipnir | 2.5.15 | |
| fenrir | sleipnir | 2.5.16 | |
| fenrir | sleipnir | 2.5.17 | |
| fenrir | sleipnir | 2.6.0 | |
| fenrir | sleipnir | 2.6.1 | |
| fenrir | sleipnir | 2.6.2 | |
| fenrir | sleipnir | 2.7.0 | |
| fenrir | sleipnir | 2.7.1 | |
| fenrir | sleipnir | 2.7.1 | |
| fenrir | sleipnir | 2.7.2 | |
| fenrir | sleipnir | 2.8 | |
| fenrir | sleipnir | 2.8.2 | |
| fenrir | sleipnir | 2.8.3 | |
| fenrir | sleipnir | 2.8.4 | |
| fenrir | sleipnir | 2.8.5 | |
| fenrir | sleipnir | 2.9 | |
| fenrir | sleipnir | 2.9.1 | |
| fenrir | sleipnir | 2.9.2 | |
| fenrir | sleipnir | 2.9.3 | |
| fenrir | grani | * | |
| fenrir | grani | 3.0 | |
| fenrir | grani | 3.1 | |
| fenrir | grani | 3.2 | |
| fenrir | grani | 3.5 | |
| fenrir | grani | 4.0 | |
| fenrir | grani | 4.1 | |
| fenrir | grani | 4.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BF224000-FC60-48B5-A80A-2E52DBFA9C67",
"versionEndIncluding": "2.9.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E7AE3589-EF1F-4906-BD9F-79B48F02605C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2D795C76-C0B8-4D70-A39E-557D0490CA6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "98C7A96D-80A8-488C-941B-43CF3CFF5CB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.3:*:*:*:*:*:*:*",
"matchCriteriaId": "F1CECD6F-041F-433E-BD1B-8B83A896E1DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.4:*:*:*:*:*:*:*",
"matchCriteriaId": "DC806925-0EBC-4A62-9CA2-C06A9464CABA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2BFB259A-0A01-41C0-957B-F1BFEBBC4621",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B3D6A1E2-CA52-4AB5-B4D2-D9D880B2ABD4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.7:*:*:*:*:*:*:*",
"matchCriteriaId": "29D748E1-B31E-4B4A-8F6C-FED7C6682020",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.8:*:*:*:*:*:*:*",
"matchCriteriaId": "62E0F7F6-35AD-4BA0-ABB4-CA4AF9B2280B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.9:*:*:*:*:*:*:*",
"matchCriteriaId": "6283AF14-DF4C-4D6B-92A4-486BD1B1E23D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.10:*:*:*:*:*:*:*",
"matchCriteriaId": "DD31D8D0-FC9D-46D8-8107-4432AC38CB7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.11:*:*:*:*:*:*:*",
"matchCriteriaId": "EF05E82F-D4E7-4D5F-915B-862261EE75D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.12:*:*:*:*:*:*:*",
"matchCriteriaId": "6566B45F-EE80-41DE-9148-76324F3ED3C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.13:*:*:*:*:*:*:*",
"matchCriteriaId": "43927247-83B1-4000-900F-90D4BC17EE3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.14:*:*:*:*:*:*:*",
"matchCriteriaId": "5268078F-6127-4107-B916-83FFAE448A77",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.15:*:*:*:*:*:*:*",
"matchCriteriaId": "D01FCBA7-B144-4879-A4CB-8C7EE2A46E65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.16:*:*:*:*:*:*:*",
"matchCriteriaId": "43813DF8-D463-40B8-8D69-13398C0D9B9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.17:*:*:*:*:*:*:*",
"matchCriteriaId": "BE63C7D1-2701-48F8-8C30-0F474E25FC12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E7A21B8B-677F-4F79-8E15-B68F8B926EA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "092C6BAD-12EF-42C2-AB6D-7549AEB7B2CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "9CEE9AB5-F7C2-4D5D-AFFF-CDE91EF347A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "49C2C651-3F69-4C17-AA56-D9E141FCF053",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "E2D0DC71-F8B9-4BE1-9462-948E610B6C47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.7.1:r2:*:*:*:*:*:*",
"matchCriteriaId": "BB631A4F-AB11-4426-98B8-2398CD7EB82E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C80ADAAA-64CC-42A4-B8E6-A951C7473B17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8:*:*:*:*:*:*:*",
"matchCriteriaId": "BED96F34-CCA5-4056-BFF6-817468EA2187",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "16B52778-D697-463F-9252-1B1D3C0D975E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8.3:*:*:*:*:*:*:*",
"matchCriteriaId": "1835F518-7065-41FA-9659-0898B9620B9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "193A1B10-1C5B-4933-8C22-1AD5C739E358",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8.5:*:*:*:*:*:*:*",
"matchCriteriaId": "0F5BD044-859A-439B-B5E3-107D9252C7F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.9:*:*:*:*:*:*:*",
"matchCriteriaId": "C4D82F84-D15D-4034-9AD2-5E42D7A9CF4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.9.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1D9F85EE-F47C-4291-A162-091B565826CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.9.2:*:*:*:*:*:*:*",
"matchCriteriaId": "1233AF74-35EC-45C3-A4ED-9B364D4FB401",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.9.3:*:*:*:*:*:*:*",
"matchCriteriaId": "96EB8FCA-C7EC-4BEA-B91B-F80FA4E78A2A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fenrir:grani:*:*:*:*:*:*:*:*",
"matchCriteriaId": "50B4E2F7-5B2D-4174-9E7B-7EA5BA7E2AC8",
"versionEndIncluding": "4.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E28BA839-EBCA-461A-AE44-2CFBBE006341",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "4B0418CF-47E2-4C32-93C1-36EA37833CF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D2A9ACA9-3D93-4C8C-85F2-8E977ACAD8BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "46CBC2EB-1D53-4ADA-97EA-81D8C67EFC90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "439C0D2A-DA16-426F-8EF8-AA71B6158CE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8F26FDE1-515D-434A-A68E-0F0055685EC7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A88A00FB-3224-4CBB-B358-F58E4B8F89FB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir before 2.9.5 and Grani before 4.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory."
},
{
"lang": "es",
"value": "Vulnerabilidad de ruta de b\u00fasqueda no confiable en Fenrir Sleipnir v2.9.5 y anteriores y Grani v4.4 y anteriores permite a usuarios locales, y puede que atacantes remotos, ejecutar c\u00f3digo de su elecci\u00f3n y producir un ataque de secuestro de DLL, a trav\u00e9s de un troyano que est\u00e1 ubicado en la misma carpeta que un fichero"
}
],
"evaluatorComment": "Per: http://cwe.mitre.org/data/definitions/426.html\r\n\r\n\u0027CWE-426: Untrusted Search Path\u0027",
"id": "CVE-2010-3163",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2010-10-25T20:01:03.503",
"references": [
{
"source": "vultures@jpcert.or.jp",
"url": "http://jvn.jp/en/jp/JVN50610528/index.html"
},
{
"source": "vultures@jpcert.or.jp",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000047.html"
},
{
"source": "vultures@jpcert.or.jp",
"tags": [
"Vendor Advisory"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"source": "vultures@jpcert.or.jp",
"tags": [
"Vendor Advisory"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvn.jp/en/jp/JVN50610528/index.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000047.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
}
],
"sourceIdentifier": "vultures@jpcert.or.jp",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2010-3164
Vulnerability from fkie_nvd - Published: 2010-10-25 20:01 - Updated: 2025-04-11 00:51
Severity ?
Summary
Untrusted search path vulnerability in Fenrir Sleipnir 2.9.4 and earlier and Grani 4.3 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| fenrir | sleipnir | * | |
| fenrir | sleipnir | 2.5.0 | |
| fenrir | sleipnir | 2.5.1 | |
| fenrir | sleipnir | 2.5.2 | |
| fenrir | sleipnir | 2.5.3 | |
| fenrir | sleipnir | 2.5.4 | |
| fenrir | sleipnir | 2.5.5 | |
| fenrir | sleipnir | 2.5.6 | |
| fenrir | sleipnir | 2.5.7 | |
| fenrir | sleipnir | 2.5.8 | |
| fenrir | sleipnir | 2.5.9 | |
| fenrir | sleipnir | 2.5.10 | |
| fenrir | sleipnir | 2.5.11 | |
| fenrir | sleipnir | 2.5.12 | |
| fenrir | sleipnir | 2.5.13 | |
| fenrir | sleipnir | 2.5.14 | |
| fenrir | sleipnir | 2.5.15 | |
| fenrir | sleipnir | 2.5.16 | |
| fenrir | sleipnir | 2.5.17 | |
| fenrir | sleipnir | 2.6.0 | |
| fenrir | sleipnir | 2.6.1 | |
| fenrir | sleipnir | 2.6.2 | |
| fenrir | sleipnir | 2.7.0 | |
| fenrir | sleipnir | 2.7.1 | |
| fenrir | sleipnir | 2.7.1 | |
| fenrir | sleipnir | 2.7.2 | |
| fenrir | sleipnir | 2.8 | |
| fenrir | sleipnir | 2.8.2 | |
| fenrir | sleipnir | 2.8.3 | |
| fenrir | sleipnir | 2.8.4 | |
| fenrir | sleipnir | 2.8.5 | |
| fenrir | sleipnir | 2.9 | |
| fenrir | sleipnir | 2.9.1 | |
| fenrir | sleipnir | 2.9.2 | |
| fenrir | sleipnir | 2.9.3 | |
| fenrir | grani | * | |
| fenrir | grani | 3.0 | |
| fenrir | grani | 3.1 | |
| fenrir | grani | 3.2 | |
| fenrir | grani | 3.5 | |
| fenrir | grani | 4.0 | |
| fenrir | grani | 4.1 | |
| fenrir | grani | 4.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BF224000-FC60-48B5-A80A-2E52DBFA9C67",
"versionEndIncluding": "2.9.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E7AE3589-EF1F-4906-BD9F-79B48F02605C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2D795C76-C0B8-4D70-A39E-557D0490CA6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "98C7A96D-80A8-488C-941B-43CF3CFF5CB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.3:*:*:*:*:*:*:*",
"matchCriteriaId": "F1CECD6F-041F-433E-BD1B-8B83A896E1DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.4:*:*:*:*:*:*:*",
"matchCriteriaId": "DC806925-0EBC-4A62-9CA2-C06A9464CABA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2BFB259A-0A01-41C0-957B-F1BFEBBC4621",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B3D6A1E2-CA52-4AB5-B4D2-D9D880B2ABD4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.7:*:*:*:*:*:*:*",
"matchCriteriaId": "29D748E1-B31E-4B4A-8F6C-FED7C6682020",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.8:*:*:*:*:*:*:*",
"matchCriteriaId": "62E0F7F6-35AD-4BA0-ABB4-CA4AF9B2280B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.9:*:*:*:*:*:*:*",
"matchCriteriaId": "6283AF14-DF4C-4D6B-92A4-486BD1B1E23D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.10:*:*:*:*:*:*:*",
"matchCriteriaId": "DD31D8D0-FC9D-46D8-8107-4432AC38CB7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.11:*:*:*:*:*:*:*",
"matchCriteriaId": "EF05E82F-D4E7-4D5F-915B-862261EE75D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.12:*:*:*:*:*:*:*",
"matchCriteriaId": "6566B45F-EE80-41DE-9148-76324F3ED3C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.13:*:*:*:*:*:*:*",
"matchCriteriaId": "43927247-83B1-4000-900F-90D4BC17EE3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.14:*:*:*:*:*:*:*",
"matchCriteriaId": "5268078F-6127-4107-B916-83FFAE448A77",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.15:*:*:*:*:*:*:*",
"matchCriteriaId": "D01FCBA7-B144-4879-A4CB-8C7EE2A46E65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.16:*:*:*:*:*:*:*",
"matchCriteriaId": "43813DF8-D463-40B8-8D69-13398C0D9B9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.5.17:*:*:*:*:*:*:*",
"matchCriteriaId": "BE63C7D1-2701-48F8-8C30-0F474E25FC12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E7A21B8B-677F-4F79-8E15-B68F8B926EA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "092C6BAD-12EF-42C2-AB6D-7549AEB7B2CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "9CEE9AB5-F7C2-4D5D-AFFF-CDE91EF347A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "49C2C651-3F69-4C17-AA56-D9E141FCF053",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "E2D0DC71-F8B9-4BE1-9462-948E610B6C47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.7.1:r2:*:*:*:*:*:*",
"matchCriteriaId": "BB631A4F-AB11-4426-98B8-2398CD7EB82E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C80ADAAA-64CC-42A4-B8E6-A951C7473B17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8:*:*:*:*:*:*:*",
"matchCriteriaId": "BED96F34-CCA5-4056-BFF6-817468EA2187",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "16B52778-D697-463F-9252-1B1D3C0D975E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8.3:*:*:*:*:*:*:*",
"matchCriteriaId": "1835F518-7065-41FA-9659-0898B9620B9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "193A1B10-1C5B-4933-8C22-1AD5C739E358",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.8.5:*:*:*:*:*:*:*",
"matchCriteriaId": "0F5BD044-859A-439B-B5E3-107D9252C7F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.9:*:*:*:*:*:*:*",
"matchCriteriaId": "C4D82F84-D15D-4034-9AD2-5E42D7A9CF4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.9.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1D9F85EE-F47C-4291-A162-091B565826CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.9.2:*:*:*:*:*:*:*",
"matchCriteriaId": "1233AF74-35EC-45C3-A4ED-9B364D4FB401",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:2.9.3:*:*:*:*:*:*:*",
"matchCriteriaId": "96EB8FCA-C7EC-4BEA-B91B-F80FA4E78A2A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fenrir:grani:*:*:*:*:*:*:*:*",
"matchCriteriaId": "50B4E2F7-5B2D-4174-9E7B-7EA5BA7E2AC8",
"versionEndIncluding": "4.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E28BA839-EBCA-461A-AE44-2CFBBE006341",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "4B0418CF-47E2-4C32-93C1-36EA37833CF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D2A9ACA9-3D93-4C8C-85F2-8E977ACAD8BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "46CBC2EB-1D53-4ADA-97EA-81D8C67EFC90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "439C0D2A-DA16-426F-8EF8-AA71B6158CE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8F26FDE1-515D-434A-A68E-0F0055685EC7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:grani:4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A88A00FB-3224-4CBB-B358-F58E4B8F89FB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir 2.9.4 and earlier and Grani 4.3 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory."
},
{
"lang": "es",
"value": "Vulnerabilidad de ruta de b\u00fasqueda no confiable en Fenrir Sleipnir v2.9.4 y anteriores y Grani v4.3 y anteriores permite a usuarios locales obtener privilegios a trav\u00e9s de un troyano que est\u00e1 ubicado en la carpeta actual de trabajo.\r\n"
}
],
"evaluatorComment": "Per: http://cwe.mitre.org/data/definitions/426.html\r\n\r\n\u0027CWE-426: Untrusted Search Path\u0027",
"id": "CVE-2010-3164",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2010-10-25T20:01:03.580",
"references": [
{
"source": "vultures@jpcert.or.jp",
"url": "http://jvn.jp/en/jp/JVN89272705/index.html"
},
{
"source": "vultures@jpcert.or.jp",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000048.html"
},
{
"source": "vultures@jpcert.or.jp",
"tags": [
"Vendor Advisory"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"source": "vultures@jpcert.or.jp",
"tags": [
"Vendor Advisory"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"source": "vultures@jpcert.or.jp",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64435"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvn.jp/en/jp/JVN89272705/index.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000048.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64435"
}
],
"sourceIdentifier": "vultures@jpcert.or.jp",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2008-2567
Vulnerability from fkie_nvd - Published: 2008-06-06 18:32 - Updated: 2025-04-09 00:30
Severity ?
Summary
Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a history mechanism and favorites search, a different vulnerability than CVE-2007-6002.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fenrir:grani:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9FEC60B3-254C-4DAE-89A3-56AFB4C448ED",
"versionEndIncluding": "3.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a history mechanism and favorites search, a different vulnerability than CVE-2007-6002."
},
{
"lang": "es",
"value": "Vulnerabilidad de ejecuci\u00f3n de secuencias de comandos en sitios cruzados (XSS) en Fenriru Sleipnir 2.7.1 Release2 y anteriores, Portable Sleipnir 2.7.1 Release2 y anteriores, and Grani 3.1 y anteriores. Permite a atacantes remotos inyectar secuencias de comandos web de su elecci\u00f3n a trav\u00e9s de vectores no especificados relativos a una historia de mecanismo y b\u00fasqueda de favoritos, una vulnerabilidad diferente de CVE-2007-6002."
}
],
"id": "CVE-2008-2567",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2008-06-06T18:32:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://jvn.jp/jp/JVN25448394/index.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/30487"
},
{
"source": "cve@mitre.org",
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/29555"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42827"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvn.jp/jp/JVN25448394/index.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/30487"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/29555"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42827"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2007-6002
Vulnerability from fkie_nvd - Published: 2007-11-15 22:46 - Updated: 2025-04-09 00:30
Severity ?
Summary
Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field in a search for additions to the Favorites section.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:fenrir:grani:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EE7D5963-DAC7-4DC3-893C-C27E724137D7",
"versionEndIncluding": "3.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:fenrir:sleipnir:*:r2:*:*:*:*:*:*",
"matchCriteriaId": "3CB5998C-FBF9-4ABD-AF46-170385EA5AB1",
"versionEndIncluding": "2.5.17",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field in a search for additions to the Favorites section."
},
{
"lang": "es",
"value": "Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Fenriru (1) Sleipnir 2.5.17 R2 y anteriores y (2) Grani 3.0 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elecci\u00f3n mediante el campo Search en una busca de a\u00f1adidos en la secci\u00f3n Favorites."
}
],
"id": "CVE-2007-6002",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2007-11-15T22:46:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://jvn.jp/jp/JVN%2365427327/index.html"
},
{
"source": "cve@mitre.org",
"url": "http://osvdb.org/38875"
},
{
"source": "cve@mitre.org",
"url": "http://osvdb.org/38876"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/27655"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/27675"
},
{
"source": "cve@mitre.org",
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/26418"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38441"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://jvn.jp/jp/JVN%2365427327/index.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://osvdb.org/38875"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://osvdb.org/38876"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/27655"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/27675"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/26418"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38441"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2010-3919 (GCVE-0-2010-3919)
Vulnerability from cvelistv5 – Published: 2010-12-10 18:00 – Updated: 2024-09-16 23:55
VLAI?
Summary
Fenrir Grani 4.5 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T03:26:12.278Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVNDB-2010-000058",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB",
"x_transferred"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000058.html"
},
{
"name": "42428",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/42428"
},
{
"name": "JVN#76662040",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN76662040/index.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/blog/2010/11/post_47.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Fenrir Grani 4.5 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-12-10T18:00:00Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVNDB-2010-000058",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000058.html"
},
{
"name": "42428",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/42428"
},
{
"name": "JVN#76662040",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN76662040/index.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/blog/2010/11/post_47.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2010-3919",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Fenrir Grani 4.5 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVNDB-2010-000058",
"refsource": "JVNDB",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000058.html"
},
{
"name": "42428",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/42428"
},
{
"name": "JVN#76662040",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN76662040/index.html"
},
{
"name": "http://www.fenrir.co.jp/blog/2010/11/post_47.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/blog/2010/11/post_47.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2010-3919",
"datePublished": "2010-12-10T18:00:00Z",
"dateReserved": "2010-10-12T00:00:00Z",
"dateUpdated": "2024-09-16T23:55:56.796Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2010-3163 (GCVE-0-2010-3163)
Vulnerability from cvelistv5 – Published: 2010-10-25 19:00 – Updated: 2024-09-16 23:36
VLAI?
Summary
Untrusted search path vulnerability in Fenrir Sleipnir before 2.9.5 and Grani before 4.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T03:03:18.084Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVNDB-2010-000047",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB",
"x_transferred"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000047.html"
},
{
"name": "JVN#50610528",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN50610528/index.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir before 2.9.5 and Grani before 4.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-10-25T19:00:00Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVNDB-2010-000047",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000047.html"
},
{
"name": "JVN#50610528",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN50610528/index.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2010-3163",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir before 2.9.5 and Grani before 4.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVNDB-2010-000047",
"refsource": "JVNDB",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000047.html"
},
{
"name": "JVN#50610528",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN50610528/index.html"
},
{
"name": "http://www.fenrir.co.jp/grani/note.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"name": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2010-3163",
"datePublished": "2010-10-25T19:00:00Z",
"dateReserved": "2010-08-27T00:00:00Z",
"dateUpdated": "2024-09-16T23:36:39.785Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2010-3164 (GCVE-0-2010-3164)
Vulnerability from cvelistv5 – Published: 2010-10-25 19:00 – Updated: 2024-08-07 03:03
VLAI?
Summary
Untrusted search path vulnerability in Fenrir Sleipnir 2.9.4 and earlier and Grani 4.3 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T03:03:17.584Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"name": "sleipnir-grani-untrusted-priv-escalation(64435)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64435"
},
{
"name": "JVNDB-2010-000048",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB",
"x_transferred"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000048.html"
},
{
"name": "JVN#89272705",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN89272705/index.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2010-10-22T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir 2.9.4 and earlier and Grani 4.3 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"name": "sleipnir-grani-untrusted-priv-escalation(64435)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64435"
},
{
"name": "JVNDB-2010-000048",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000048.html"
},
{
"name": "JVN#89272705",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN89272705/index.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2010-3164",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir 2.9.4 and earlier and Grani 4.3 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html",
"refsource": "MISC",
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"name": "sleipnir-grani-untrusted-priv-escalation(64435)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64435"
},
{
"name": "JVNDB-2010-000048",
"refsource": "JVNDB",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000048.html"
},
{
"name": "JVN#89272705",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN89272705/index.html"
},
{
"name": "http://www.fenrir.co.jp/grani/note.html",
"refsource": "MISC",
"url": "http://www.fenrir.co.jp/grani/note.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2010-3164",
"datePublished": "2010-10-25T19:00:00",
"dateReserved": "2010-08-27T00:00:00",
"dateUpdated": "2024-08-07T03:03:17.584Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-2567 (GCVE-0-2008-2567)
Vulnerability from cvelistv5 – Published: 2008-06-06 18:00 – Updated: 2024-08-07 09:05
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a history mechanism and favorites search, a different vulnerability than CVE-2007-6002.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T09:05:30.190Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#25448394",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/jp/JVN25448394/index.html"
},
{
"name": "29555",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/29555"
},
{
"name": "30487",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/30487"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "sleipnir-favoritesearch-xss(42827)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42827"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-06-04T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a history mechanism and favorites search, a different vulnerability than CVE-2007-6002."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-07T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "JVN#25448394",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/jp/JVN25448394/index.html"
},
{
"name": "29555",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/29555"
},
{
"name": "30487",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/30487"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "sleipnir-favoritesearch-xss(42827)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42827"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-2567",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a history mechanism and favorites search, a different vulnerability than CVE-2007-6002."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#25448394",
"refsource": "JVN",
"url": "http://jvn.jp/jp/JVN25448394/index.html"
},
{
"name": "29555",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/29555"
},
{
"name": "30487",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/30487"
},
{
"name": "http://www.fenrir.co.jp/sleipnir/note.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "sleipnir-favoritesearch-xss(42827)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42827"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-2567",
"datePublished": "2008-06-06T18:00:00",
"dateReserved": "2008-06-06T00:00:00",
"dateUpdated": "2024-08-07T09:05:30.190Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-6002 (GCVE-0-2007-6002)
Vulnerability from cvelistv5 – Published: 2007-11-15 22:00 – Updated: 2024-08-07 15:47
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field in a search for additions to the Favorites section.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T15:47:00.839Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#65427327",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/jp/JVN%2365427327/index.html"
},
{
"name": "sleipnir-search-xss(38441)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38441"
},
{
"name": "38875",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/38875"
},
{
"name": "26418",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/26418"
},
{
"name": "38876",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/38876"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"name": "27675",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27675"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "27655",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27655"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-11-13T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field in a search for additions to the Favorites section."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "JVN#65427327",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/jp/JVN%2365427327/index.html"
},
{
"name": "sleipnir-search-xss(38441)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38441"
},
{
"name": "38875",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/38875"
},
{
"name": "26418",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/26418"
},
{
"name": "38876",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/38876"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"name": "27675",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27675"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "27655",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27655"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-6002",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field in a search for additions to the Favorites section."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#65427327",
"refsource": "JVN",
"url": "http://jvn.jp/jp/JVN%2365427327/index.html"
},
{
"name": "sleipnir-search-xss(38441)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38441"
},
{
"name": "38875",
"refsource": "OSVDB",
"url": "http://osvdb.org/38875"
},
{
"name": "26418",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/26418"
},
{
"name": "38876",
"refsource": "OSVDB",
"url": "http://osvdb.org/38876"
},
{
"name": "http://www.fenrir.co.jp/grani/note.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"name": "27675",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/27675"
},
{
"name": "http://www.fenrir.co.jp/sleipnir/note.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "27655",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/27655"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2007-6002",
"datePublished": "2007-11-15T22:00:00",
"dateReserved": "2007-11-15T00:00:00",
"dateUpdated": "2024-08-07T15:47:00.839Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2010-3919 (GCVE-0-2010-3919)
Vulnerability from nvd – Published: 2010-12-10 18:00 – Updated: 2024-09-16 23:55
VLAI?
Summary
Fenrir Grani 4.5 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T03:26:12.278Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVNDB-2010-000058",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB",
"x_transferred"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000058.html"
},
{
"name": "42428",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/42428"
},
{
"name": "JVN#76662040",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN76662040/index.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/blog/2010/11/post_47.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Fenrir Grani 4.5 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-12-10T18:00:00Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVNDB-2010-000058",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000058.html"
},
{
"name": "42428",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/42428"
},
{
"name": "JVN#76662040",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN76662040/index.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/blog/2010/11/post_47.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2010-3919",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Fenrir Grani 4.5 and earlier does not prevent interaction between web script and the clipboard, which allows remote attackers to read or modify the clipboard contents via a crafted web site."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVNDB-2010-000058",
"refsource": "JVNDB",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000058.html"
},
{
"name": "42428",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/42428"
},
{
"name": "JVN#76662040",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN76662040/index.html"
},
{
"name": "http://www.fenrir.co.jp/blog/2010/11/post_47.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/blog/2010/11/post_47.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2010-3919",
"datePublished": "2010-12-10T18:00:00Z",
"dateReserved": "2010-10-12T00:00:00Z",
"dateUpdated": "2024-09-16T23:55:56.796Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2010-3163 (GCVE-0-2010-3163)
Vulnerability from nvd – Published: 2010-10-25 19:00 – Updated: 2024-09-16 23:36
VLAI?
Summary
Untrusted search path vulnerability in Fenrir Sleipnir before 2.9.5 and Grani before 4.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T03:03:18.084Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVNDB-2010-000047",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB",
"x_transferred"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000047.html"
},
{
"name": "JVN#50610528",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN50610528/index.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir before 2.9.5 and Grani before 4.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-10-25T19:00:00Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVNDB-2010-000047",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000047.html"
},
{
"name": "JVN#50610528",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN50610528/index.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2010-3163",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir before 2.9.5 and Grani before 4.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVNDB-2010-000047",
"refsource": "JVNDB",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000047.html"
},
{
"name": "JVN#50610528",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN50610528/index.html"
},
{
"name": "http://www.fenrir.co.jp/grani/note.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"name": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2010-3163",
"datePublished": "2010-10-25T19:00:00Z",
"dateReserved": "2010-08-27T00:00:00Z",
"dateUpdated": "2024-09-16T23:36:39.785Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2010-3164 (GCVE-0-2010-3164)
Vulnerability from nvd – Published: 2010-10-25 19:00 – Updated: 2024-08-07 03:03
VLAI?
Summary
Untrusted search path vulnerability in Fenrir Sleipnir 2.9.4 and earlier and Grani 4.3 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T03:03:17.584Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"name": "sleipnir-grani-untrusted-priv-escalation(64435)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64435"
},
{
"name": "JVNDB-2010-000048",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB",
"x_transferred"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000048.html"
},
{
"name": "JVN#89272705",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN89272705/index.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2010-10-22T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir 2.9.4 and earlier and Grani 4.3 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"name": "sleipnir-grani-untrusted-priv-escalation(64435)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64435"
},
{
"name": "JVNDB-2010-000048",
"tags": [
"third-party-advisory",
"x_refsource_JVNDB"
],
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000048.html"
},
{
"name": "JVN#89272705",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN89272705/index.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2010-3164",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in Fenrir Sleipnir 2.9.4 and earlier and Grani 4.3 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html",
"refsource": "MISC",
"url": "http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html"
},
{
"name": "sleipnir-grani-untrusted-priv-escalation(64435)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64435"
},
{
"name": "JVNDB-2010-000048",
"refsource": "JVNDB",
"url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000048.html"
},
{
"name": "JVN#89272705",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN89272705/index.html"
},
{
"name": "http://www.fenrir.co.jp/grani/note.html",
"refsource": "MISC",
"url": "http://www.fenrir.co.jp/grani/note.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2010-3164",
"datePublished": "2010-10-25T19:00:00",
"dateReserved": "2010-08-27T00:00:00",
"dateUpdated": "2024-08-07T03:03:17.584Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-2567 (GCVE-0-2008-2567)
Vulnerability from nvd – Published: 2008-06-06 18:00 – Updated: 2024-08-07 09:05
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a history mechanism and favorites search, a different vulnerability than CVE-2007-6002.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T09:05:30.190Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#25448394",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/jp/JVN25448394/index.html"
},
{
"name": "29555",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/29555"
},
{
"name": "30487",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/30487"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "sleipnir-favoritesearch-xss(42827)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42827"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-06-04T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a history mechanism and favorites search, a different vulnerability than CVE-2007-6002."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-07T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "JVN#25448394",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/jp/JVN25448394/index.html"
},
{
"name": "29555",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/29555"
},
{
"name": "30487",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/30487"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "sleipnir-favoritesearch-xss(42827)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42827"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-2567",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a history mechanism and favorites search, a different vulnerability than CVE-2007-6002."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#25448394",
"refsource": "JVN",
"url": "http://jvn.jp/jp/JVN25448394/index.html"
},
{
"name": "29555",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/29555"
},
{
"name": "30487",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/30487"
},
{
"name": "http://www.fenrir.co.jp/sleipnir/note.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "sleipnir-favoritesearch-xss(42827)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42827"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-2567",
"datePublished": "2008-06-06T18:00:00",
"dateReserved": "2008-06-06T00:00:00",
"dateUpdated": "2024-08-07T09:05:30.190Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-6002 (GCVE-0-2007-6002)
Vulnerability from nvd – Published: 2007-11-15 22:00 – Updated: 2024-08-07 15:47
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field in a search for additions to the Favorites section.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T15:47:00.839Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#65427327",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/jp/JVN%2365427327/index.html"
},
{
"name": "sleipnir-search-xss(38441)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38441"
},
{
"name": "38875",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/38875"
},
{
"name": "26418",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/26418"
},
{
"name": "38876",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/38876"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"name": "27675",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27675"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "27655",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27655"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-11-13T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field in a search for additions to the Favorites section."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "JVN#65427327",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/jp/JVN%2365427327/index.html"
},
{
"name": "sleipnir-search-xss(38441)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38441"
},
{
"name": "38875",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/38875"
},
{
"name": "26418",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/26418"
},
{
"name": "38876",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/38876"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"name": "27675",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27675"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "27655",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27655"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-6002",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Fenriru (1) Sleipnir 2.5.17 R2 and earlier and (2) Grani 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field in a search for additions to the Favorites section."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#65427327",
"refsource": "JVN",
"url": "http://jvn.jp/jp/JVN%2365427327/index.html"
},
{
"name": "sleipnir-search-xss(38441)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38441"
},
{
"name": "38875",
"refsource": "OSVDB",
"url": "http://osvdb.org/38875"
},
{
"name": "26418",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/26418"
},
{
"name": "38876",
"refsource": "OSVDB",
"url": "http://osvdb.org/38876"
},
{
"name": "http://www.fenrir.co.jp/grani/note.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/grani/note.html"
},
{
"name": "27675",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/27675"
},
{
"name": "http://www.fenrir.co.jp/sleipnir/note.html",
"refsource": "CONFIRM",
"url": "http://www.fenrir.co.jp/sleipnir/note.html"
},
{
"name": "27655",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/27655"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2007-6002",
"datePublished": "2007-11-15T22:00:00",
"dateReserved": "2007-11-15T00:00:00",
"dateUpdated": "2024-08-07T15:47:00.839Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}