Back to search
CVE-2009-0796
Published: Apr 7, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the Apache HTTP Server, when /perl-status is accessible, allows remote attackers to inject arbitrary web script or HTML via the URI.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1021988
vdb-entry
x_refsource_SECTRACK
http://svn.apache.org/viewvc?view=rev&revision=761081
x_refsource_CONFIRM
MDVSA-2009:091
vendor-advisory
x_refsource_MANDRIVA
http://support.apple.com/kb/HT4435
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=494402
x_refsource_CONFIRM
APPLE-SA-2010-11-10-1
vendor-advisory
x_refsource_APPLE
1021508
vendor-advisory
x_refsource_SUNALERT
ADV-2009-0943
vdb-entry
x_refsource_VUPEN
[modperl] 20090401 [SECURITY] [CVE-2009-0796] Vulnerability found in Apache::Status and Apache2::Status
mailing-list
x_refsource_MLIST
https://launchpad.net/bugs/cve/2009-0796
x_refsource_MISC
1021709
vendor-advisory
x_refsource_SUNALERT
oval:org.mitre.oval:def:8488
vdb-entry
signature
x_refsource_OVAL
[modperl-cvs] 20090401 svn commit: r761081 - in /perl/modperl/branches/1.x: Changes lib/Apache/Status.pm
mailing-list
x_refsource_MLIST
34383
vdb-entry
x_refsource_BID
34597
third-party-advisory
x_refsource_SECUNIA
20090415 XSS with mod_perl perl_status utility
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now