NVD

Id
47940  
Name
CVE-2009-0611  
Description
Multiple cross-site scripting (XSS) vulnerabilities in qfsearch/AdminServlet in QuickFinder Server in Novell Open Enterprise Server 1.x allow remote attackers to inject arbitrary web script or HTML via (1) the siteloc parameter in a displayaddsite action, the site parameter in a (2) generalproperties or (3) clusterserviceproperties action, (4) the adminurl parameter in a global action, or (5) the print-list parameter.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2009-02-17  
Modified Date
2011-03-07  
Seq
2009-0611  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
240366 47940 CVE-2009-0611 http://packetstormsecurity.org/0902-exploits/nqfs-xss.txt  View
240367 47940 CVE-2009-0611 33708  View
240368 47940 CVE-2009-0611 1021695  View
240369 47940 CVE-2009-0611 ADV-2009-0421  View
240370 47940 CVE-2009-0611 quickfinderserver-multiple-xss(48619)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40427 JVNDB-2009-001433 Novell Open Enterprise Server に含まれる QuickFinder Server の qfsearch/AdminServlet における複数のクロスサイトスクリプティングの脆弱性 Novell Open Enterprise Server に含まれる QuickFinder Server の qfsearch/AdminServlet には、複数のクロスサイトスクリプティングの脆弱性が存在します。 CVE-2009-0611 38042 CVE-2009-0611 47940 4.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001433.html 2009-02-05 2009-06-30 View