Candidate: CVE-2009-4422
PublicDate: 2009-12-24 17:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4422
Description:
 Multiple cross-site scripting (XSS) vulnerabilities in the GetURLArguments
 function in jpgraph.php in Aditus Consulting JpGraph 3.0.6 allow remote
 attackers to inject arbitrary web script or HTML via a key to
 csim_in_html_ex1.php, and other unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_libphp-jpgraph:
upstream_libphp-jpgraph: needed
dapper_libphp-jpgraph: ignored (reached end-of-life)
hardy_libphp-jpgraph: ignored (reached end-of-life)
intrepid_libphp-jpgraph: needed (reached end-of-life)
jaunty_libphp-jpgraph: ignored (reached end-of-life)
karmic_libphp-jpgraph: ignored (reached end-of-life)
lucid_libphp-jpgraph: not-affected (1.5.2-12)
maverick_libphp-jpgraph: ignored (reached end-of-life)
natty_libphp-jpgraph: ignored (reached end-of-life)
oneiric_libphp-jpgraph: ignored (reached end-of-life)
precise_libphp-jpgraph: not-affected (1.5.2-12)
quantal_libphp-jpgraph: not-affected (1.5.2-12)
raring_libphp-jpgraph: not-affected (1.5.2-12.1)
devel_libphp-jpgraph: not-affected (1.5.2-12.1)