CVE-2008-1474: Roundup vulnerability related to Cross-site scripting (XSS)
(updated )
Multiple unspecified vulnerabilities in Roundup before 1.4.4 have unknown impact and attack vectors, some of which may be related to cross-site scripting (XSS).
References
- bugzilla.redhat.com/show_bug.cgi?id=436546
- exchange.xforce.ibmcloud.com/vulnerabilities/41241
- github.com/advisories/GHSA-c3qv-mf8h-434r
- github.com/pypa/advisory-database/tree/main/vulns/roundup/PYSEC-2008-9.yaml
- github.com/roundup-tracker/roundup
- github.com/roundup-tracker/roundup/commit/151ffd3367e7af563a92aabb3a8034a0f49063d9
- lists.debian.org/debian-security-announce/2008/msg00125.html
- nvd.nist.gov/vuln/detail/CVE-2008-1474
- www.redhat.com/archives/fedora-package-announce/2008-March/msg00264.html
- www.redhat.com/archives/fedora-package-announce/2008-March/msg00375.html
Code Behaviors & Features
Detect and mitigate CVE-2008-1474 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →