Project

General

Profile

Bug #1709

[2.6] Cross-site scripting (XSS) vulnerability in smokeping_cgi

Added by Leonardo Arena about 6 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
High
Assignee:
-
Category:
Security
Target version:
Start date:
03/22/2013
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

Cross-site scripting (XSS) vulnerability in smokeping_cgi in Smokeping 2.4.2, 2.6.6, and other versions before 2.6.7 allows remote attackers to inject arbitrary web script or HTML via the displaymode parameter.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0790


Subtasks

Bug #1710: [2.5] Cross-site scripting (XSS) vulnerability in smokeping_cgiClosed

Bug #1711: [2.4] Cross-site scripting (XSS) vulnerability in smokeping_cgiClosed

Bug #1712: [2.3] Cross-site scripting (XSS) vulnerability in smokeping_cgiClosed

Bug #1713: [2.2] Cross-site scripting (XSS) vulnerability in smokeping_cgiClosed

Associated revisions

Revision ddfb89a1 (diff)
Added by Natanael Copa about 6 years ago

main/smokeping: upgrade to 2.6.9

fixes #1709

History

#1 Updated by Natanael Copa about 6 years ago

  • Subject changed from Cross-site scripting (XSS) vulnerability in smokeping_cgi to [2.6] Cross-site scripting (XSS) vulnerability in smokeping_cgi

#2 Updated by Natanael Copa about 6 years ago

  • Status changed from New to Resolved
  • % Done changed from 75 to 100

#3 Updated by Natanael Copa about 6 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF