Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2009-5145

Cross-site scripting (XSS) vulnerability in ZMI pages that use the manage_tabs_message in Zope 2.11.4, 2.11.2, 2.10.9, 2.10.7, 2.10.6, 2.10.5, 2.10.4, 2.10.2, 2.10.1, 2.12.

  • Published: Aug 7, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-5145
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.1
  • AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
zope / zope 2.10.5 2.10.5.x
zope / zope 2.10.7 2.10.7.x
zope / zope 2.10.1 2.10.1.x
zope / zope 2.12.0 2.12.0.x
zope / zope 2.11.2 2.11.2.x
zope / zope 2.10.2 2.10.2.x
zope / zope 2.10.4 2.10.4.x
zope / zope 2.10.6 2.10.6.x
zope / zope 2.10.9 2.10.9.x
zope / zope 2.11.4 2.11.4.x