Name | CVE-2007-5588 |
Description | Cross-site scripting (XSS) vulnerability in mnoGoSearch before 3.2.43 allows remote attackers to inject arbitrary web script or HTML via the t parameter in search.cgi, as reachable from search.htm-dist. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
References | DTSA-103-1 |
Debian Bugs | 447753 |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
mnogosearch | source | lenny | 3.2.42-1+lenny1 | DTSA-103-1 | ||
mnogosearch | source | (unstable) | 3.3.4-4.1 | low | 447753 |
[sarge] - mnogosearch <no-dsa> (Minor issue)
[etch] - mnogosearch <no-dsa> (Minor issue)