CVE-2012-0790
Published: 24 January 2012
Cross-site scripting (XSS) vulnerability in smokeping_cgi in Smokeping 2.4.2, 2.6.6, and other versions before 2.6.7 allows remote attackers to inject arbitrary web script or HTML via the displaymode parameter.
Priority
Status
Package | Release | Status |
---|---|---|
smokeping Launchpad, Ubuntu, Debian |
hardy |
Ignored
(end of life)
|
lucid |
Released
(2.3.6-5+squeeze1build0.10.04.1)
|
|
maverick |
Ignored
(end of life)
|
|
natty |
Ignored
(end of life)
|
|
oneiric |
Released
(2.3.6-5+squeeze1build0.11.10.1)
|
|
precise |
Not vulnerable
(2.6.7-1)
|
|
quantal |
Not vulnerable
(2.6.8-1)
|
|
upstream |
Released
(2.6.7)
|