OVAL Reference oval:org.mitre.oval:def:7894

Oval Definition:

oval:org.mitre.oval:def:7894

Revision Date:	2014-06-23	Version:	18
Title:	DSA-1692 php-xajax -- insufficient input sanitising
Description:	It was discovered that php-xajax, a library to develop Ajax applications, did not sufficiently sanitise URLs, which allows attackers to perform cross-site scripting attacks by using malicious URLs. For the stable distribution (etch) this problem has been fixed in version 0.2.4-2+etch1. For the testing (lenny) and unstable (sid) distributions this problem has been fixed in version 0.2.5-1. We recommend that you upgrade your php-xajax package.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2007-2739 DSA-1692
Platform(s):	Debian GNU/Linux 4.0	Product(s):	php-xajax
Definition Synopsis
Debian GNU/Linux 4.0 is installed. AND Installed architecture is all AND php-xajax is earlier than 0.2.4-2+etch1