Information on source package spotweb

Available versions

ReleaseVersion
buster20130826+dfsg3-4

Open issues

BugbusterDescription
CVE-2021-43725vulnerable (no DSA)There is a Cross Site Scripting (XSS) vulnerability in SpotPage_login. ...
CVE-2021-33966vulnerable (no DSA)Cross site scripting (XSS) vulnerability in spotweb 1.4.9, allows auth ...
CVE-2020-35545vulnerable (no DSA)Time-based SQL injection exists in Spotweb 1.4.9 via the query string.

Open unimportant issues

BugbusterDescription
CVE-2021-40973vulnerableCross-site scripting (XSS) vulnerability in templates/installer/step-0 ...
CVE-2021-40972vulnerableCross-site scripting (XSS) vulnerability in templates/installer/step-0 ...
CVE-2021-40971vulnerableCross-site scripting (XSS) vulnerability in templates/installer/step-0 ...
CVE-2021-40970vulnerableCross-site scripting (XSS) vulnerability in templates/installer/step-0 ...
CVE-2021-40969vulnerableCross-site scripting (XSS) vulnerability in templates/installer/step-0 ...
CVE-2021-40968vulnerableCross-site scripting (XSS) vulnerability in templates/installer/step-0 ...

Resolved issues

BugDescription
CVE-2021-3286SQL injection exists in Spotweb 1.4.9 because the notAllowedCommands p ...
Search for package or bug name: Reporting problems