MidnightBSD

Advisories for michael_christen

CVE-2004-2651 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in YaCy before 0.32 allow remote attackers to inject arbitrary web script or HTML via the (1) urlmaskfilter parameter to index.html or the (2) page parameter to Wiki.html.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
michael_christen yacy 0.22_build2004-07-11
michael_christen yacy 0.1_build2004-01-19
michael_christen yacy 0.27_build2004-09-24
michael_christen yacy 0.15_build2004-03-18
michael_christen yacy build2003-12-15
michael_christen yacy 0.25_build2004-08-22
michael_christen yacy 0.20_build2004-06-14
michael_christen yacy 0.29_build2004-10-22
michael_christen yacy 0.21_build2004-06-27
michael_christen yacy 0.28_build2004-10-01
michael_christen yacy 0.24_build2004-08-16
michael_christen yacy 0.23_build2004-08-08
michael_christen yacy 0.30_build2004-11-25
michael_christen yacy build2004-01-05
michael_christen yacy build2004-01-07
michael_christen yacy build2003-12-29
michael_christen yacy 0.13_build2004-02-10
michael_christen yacy 0.26_build2004-09-16
michael_christen yacy 0.11_build2004-01-24
michael_christen yacy build2003-12-18
michael_christen yacy 0.12_build2004-02-04
michael_christen yacy 0.14_build2004-02-13
michael_christen yacy 0.16_build2004-05-03
michael_christen yacy build2004-01-10
michael_christen yacy 0.31_build2004-12-09