Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
3 vulnerabilities by malcom_box
CVE-2010-1625 (GCVE-0-2010-1625)
Vulnerability from cvelistv5 – Published: 2010-06-23 18:00 – Updated: 2024-09-16 23:55
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results page for a search, a different vulnerability than CVE-2009-4497 and CVE-2010-1448.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T01:28:42.955Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[oss-security] 20100514 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/14/3"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=127316953819027\u0026w=2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/7"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/06/2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=127289957223005\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://sourceforge.net/projects/lxr/files/stable/lxr-0.9.7/ChangeLog/download"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results page for a search, a different vulnerability than CVE-2009-4497 and CVE-2010-1448."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-06-23T18:00:00.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "[oss-security] 20100514 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/14/3"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=127316953819027\u0026w=2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/7"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/06/2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=127289957223005\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://sourceforge.net/projects/lxr/files/stable/lxr-0.9.7/ChangeLog/download"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2010-1625",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results page for a search, a different vulnerability than CVE-2009-4497 and CVE-2010-1448."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20100514 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2010/05/14/3"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://marc.info/?l=oss-security\u0026m=127316953819027\u0026w=2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/7"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2010/05/06/2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://marc.info/?l=oss-security\u0026m=127289957223005\u0026w=2"
},
{
"name": "http://sourceforge.net/projects/lxr/files/stable/lxr-0.9.7/ChangeLog/download",
"refsource": "CONFIRM",
"url": "http://sourceforge.net/projects/lxr/files/stable/lxr-0.9.7/ChangeLog/download"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2010-1625",
"datePublished": "2010-06-23T18:00:00.000Z",
"dateReserved": "2010-04-29T00:00:00.000Z",
"dateUpdated": "2024-09-16T23:55:54.970Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2010-1448 (GCVE-0-2010-1448)
Vulnerability from cvelistv5 – Published: 2010-06-23 18:00 – Updated: 2024-08-07 01:21
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR Cross Referencer before 0.9.8 allows remote attackers to inject arbitrary web script or HTML via vectors related to a string in the search page's TITLE element, a different vulnerability than CVE-2009-4497 and CVE-2010-1625.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
Date Public ?
2010-01-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T01:21:19.167Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "lxr-title-xss(58294)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58294"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://sourceforge.net/projects/lxr/files/stable/lxr-0.9.8/lxr-0.9.8.tgz/download"
},
{
"name": "[oss-security] 20100514 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/14/3"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=127316953819027\u0026w=2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/7"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/06/2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=127289957223005\u0026w=2"
},
{
"name": "39686",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/39686"
},
{
"name": "39865",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/39865"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?r1=1.63\u0026r2=1.64"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?view=log#rev1.64"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=127291817517567\u0026w=2"
},
{
"name": "[oss-security] 20100503 CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/1"
},
{
"name": "64216",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/64216"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2010-01-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR Cross Referencer before 0.9.8 allows remote attackers to inject arbitrary web script or HTML via vectors related to a string in the search page\u0027s TITLE element, a different vulnerability than CVE-2009-4497 and CVE-2010-1625."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "lxr-title-xss(58294)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58294"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://sourceforge.net/projects/lxr/files/stable/lxr-0.9.8/lxr-0.9.8.tgz/download"
},
{
"name": "[oss-security] 20100514 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/14/3"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=127316953819027\u0026w=2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/7"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/06/2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=127289957223005\u0026w=2"
},
{
"name": "39686",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/39686"
},
{
"name": "39865",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/39865"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?r1=1.63\u0026r2=1.64"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?view=log#rev1.64"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=127291817517567\u0026w=2"
},
{
"name": "[oss-security] 20100503 CVE request: lxr",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/1"
},
{
"name": "64216",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/64216"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2010-1448",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR Cross Referencer before 0.9.8 allows remote attackers to inject arbitrary web script or HTML via vectors related to a string in the search page\u0027s TITLE element, a different vulnerability than CVE-2009-4497 and CVE-2010-1625."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "lxr-title-xss(58294)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/58294"
},
{
"name": "http://sourceforge.net/projects/lxr/files/stable/lxr-0.9.8/lxr-0.9.8.tgz/download",
"refsource": "CONFIRM",
"url": "http://sourceforge.net/projects/lxr/files/stable/lxr-0.9.8/lxr-0.9.8.tgz/download"
},
{
"name": "[oss-security] 20100514 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2010/05/14/3"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://marc.info/?l=oss-security\u0026m=127316953819027\u0026w=2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/7"
},
{
"name": "[oss-security] 20100506 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2010/05/06/2"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://marc.info/?l=oss-security\u0026m=127289957223005\u0026w=2"
},
{
"name": "39686",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/39686"
},
{
"name": "39865",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/39865"
},
{
"name": "http://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?r1=1.63\u0026r2=1.64",
"refsource": "CONFIRM",
"url": "http://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?r1=1.63\u0026r2=1.64"
},
{
"name": "http://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?view=log#rev1.64",
"refsource": "CONFIRM",
"url": "http://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?view=log#rev1.64"
},
{
"name": "[oss-security] 20100503 Re: CVE request: lxr",
"refsource": "MLIST",
"url": "http://marc.info/?l=oss-security\u0026m=127291817517567\u0026w=2"
},
{
"name": "[oss-security] 20100503 CVE request: lxr",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2010/05/03/1"
},
{
"name": "64216",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/64216"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2010-1448",
"datePublished": "2010-06-23T18:00:00.000Z",
"dateReserved": "2010-04-15T00:00:00.000Z",
"dateUpdated": "2024-08-07T01:21:19.167Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2009-4497 (GCVE-0-2009-4497)
Vulnerability from cvelistv5 – Published: 2010-01-07 19:00 – Updated: 2024-09-16 19:31
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in LXR Cross Referencer 0.9.5 and 0.9.6 allows remote attackers to inject arbitrary web script or HTML via the i parameter to the ident program.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:01:20.891Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[lxr-developer] 20100105 [Lxr-dev] [ lxr-Bugs-2926043 ] Cross-Site Scripting bugs in LXR",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://sourceforge.net/mailarchive/message.php?msg_name=E1NS2s4-0001PE-F2%403bkjzd1.ch3.sourceforge.com"
},
{
"name": "38117",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/38117"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in LXR Cross Referencer 0.9.5 and 0.9.6 allows remote attackers to inject arbitrary web script or HTML via the i parameter to the ident program."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-01-07T19:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "[lxr-developer] 20100105 [Lxr-dev] [ lxr-Bugs-2926043 ] Cross-Site Scripting bugs in LXR",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://sourceforge.net/mailarchive/message.php?msg_name=E1NS2s4-0001PE-F2%403bkjzd1.ch3.sourceforge.com"
},
{
"name": "38117",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/38117"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-4497",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in LXR Cross Referencer 0.9.5 and 0.9.6 allows remote attackers to inject arbitrary web script or HTML via the i parameter to the ident program."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[lxr-developer] 20100105 [Lxr-dev] [ lxr-Bugs-2926043 ] Cross-Site Scripting bugs in LXR",
"refsource": "MLIST",
"url": "http://sourceforge.net/mailarchive/message.php?msg_name=E1NS2s4-0001PE-F2%403bkjzd1.ch3.sourceforge.com"
},
{
"name": "38117",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/38117"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-4497",
"datePublished": "2010-01-07T19:00:00.000Z",
"dateReserved": "2009-12-30T00:00:00.000Z",
"dateUpdated": "2024-09-16T19:31:55.241Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}