PublicDate: 2007-05-22 19:30:00 UTC
Candidate: CVE-2007-2808
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2808
Description:
 Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb 4.00
 and Gnats 4.1.99 allows remote attackers to inject arbitrary web script or
 HTML via the database parameter.
Ubuntu-Description: 
Notes: 
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs: 
 https://bugs.launchpad.net/ubuntu/+source/gnatsweb/+bug/191196
Patches_gnatsweb:
 vendor: http://www.debian.org/security/2008/dsa-1486
 debdiff: https://bugs.launchpad.net/bugs/191196
dapper_gnatsweb: released (4.00-1ubuntu0.6.06)
edgy_gnatsweb: needed (reached end-of-life)
feisty_gnatsweb: needed (reached end-of-life)
gutsy_gnatsweb: not-affected (4.00-1.1)
hardy_gnatsweb: not-affected (4.00-1.1)
intrepid_gnatsweb: not-affected (4.00-1.1)
jaunty_gnatsweb: not-affected (4.00-1.1)
devel_gnatsweb: not-affected (4.00-1.1)
upstream_gnatsweb: needs-triage