Multiple cross-site scripting (XSS) vulnerabilities in Roundup before 1.4.20 allow remote attackers to inject arbitrary web script or HTML via the (1) @ok_message or (2) @error_message parameter to issue*.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Roundup-tracker |
|
No data.
No data.
Advisories
| Source | ID | Title |
|---|---|---|
 Debian DLA |
DLA-298-1 | roundup security update |
 EUVD |
EUVD-2020-0166 | Multiple cross-site scripting (XSS) vulnerabilities in Roundup before 1.4.20 allow remote attackers to inject arbitrary web script or HTML via the (1) @ok_message or (2) @error_message parameter to issue*. |
 Github GHSA |
GHSA-5jq3-8437-x35p | Multiple cross-site scripting (XSS) vulnerabilities in Roundup |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-06T21:28:38.622Z
Reserved: 2012-12-06T00:00:00
Link: CVE-2012-6133
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-01-30T21:15:13.950
Modified: 2024-11-21T01:45:53.357
Link: CVE-2012-6133
Redhat
No data.
OpenCVE Enrichment
No data.