FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-02-24 17:04:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b07f3254-f83a-11dd-85a4-ea653f0746ab	pyblosxom -- atom flavor multiple XML injection vulnerabilities Security Focus reports: PyBlosxom is prone to multiple XML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied XML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible. Discovery 2009-02-09 Entry 2009-02-11 pyblosxom < 1.5.r3 33676

VuXML ID

Description

b07f3254-f83a-11dd-85a4-ea653f0746ab

pyblosxom -- atom flavor multiple XML injection vulnerabilities

Security Focus reports:

PyBlosxom is prone to multiple XML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content.

Attacker-supplied XML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.

Discovery 2009-02-09
Entry 2009-02-11
pyblosxom

< 1.5.r3

33676