CVE-2009-2937

Priority
Medium
Description
Cross-site scripting (XSS) vulnerability in Planet 2.0 and Planet Venus
allows remote attackers to inject arbitrary web script or HTML via the SRC
attribute of an IMG element in a feed.
References
Bugs
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (0~bzr116-1)
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:36:31 UTC (commit 9756)