Oval Definition:	oval:org.opensuse.security:def:201715092
Revision Date: 2022-06-30 Version: 1 Title: CVE-2017-15092 Description: A cross-site scripting issue has been found in the web interface of PowerDNS Recursor from 4.0.0 up to and including 4.0.6, where the qname of DNS queries was displayed without any escaping, allowing a remote attacker to inject HTML and Javascript code into the web interface, altering the content. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-15092 Mitre CVE-2017-15092 SUSE CVE-2017-15092 openSUSE-SU-2017:3218-1 Platform(s): openSUSE Leap 42.2 openSUSE Leap 42.3 openSUSE Tumbleweed Product(s): Definition Synopsis openSUSE Leap 42.2 is installed AND Package Information pdns-recursor-3.7.3-9.3.1 is installed AND pdns-recursor is signed with openSUSE key Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information pdns-recursor-4.0.5-3 is installed AND pdns-recursor is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND pdns-recursor-4.5.5-1.3 is installed
BACK