This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Osqa First view 2012-03-19
Product Osqa Last view 2012-04-27
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:osqa:osqa:0.9.0:alpha1:*:*:*:*:*:* 1
cpe:2.3:a:osqa:osqa:0.9.0:beta1:*:*:*:*:*:* 1
cpe:2.3:a:osqa:osqa:0.9.0:beta2:*:*:*:*:*:* 1
cpe:2.3:a:osqa:osqa:3b:*:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
4.3 2012-04-27 CVE-2012-1245

Cross-site scripting (XSS) vulnerability in the cleanup_urls function in forum/utils/html.py in OSQA before 1234, and 0.9.0 Beta 3 and earlier, allows remote attackers to inject arbitrary web script or HTML via vectors related to a crafted URI.
4.3 2012-03-19 CVE-2012-1782

Multiple cross-site scripting (XSS) vulnerabilities in questions/ask in OSQA 3b allow remote attackers to inject arbitrary web script or HTML via the (1) url bar or (2) picture bar.

CWE : Common Weakness Enumeration

%idName
100% (2) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')