CVE-2009-0664

EPSS 0.44% · P63 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0664

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0.x before 1.0.11 and 1.1.x before 1.1.3 allow remote attackers to inject arbitrary web script or HTML via (1) the introduction field in a user profile or (2) an arbitrary text block in a user view.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Mahara用户配置文件跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Catalyst Mahara是新西兰Catalyst IT公司的一套社交网络系统。该系统包含博客、履历表生成器、文件管理器等。 Mahara没有正确地过滤对introduction用户配置文件字段和用户视图某些文本块所传送的输入参数便返回给了用户，远程攻击者可以通过向服务器提交恶意请求执行跨站脚本攻击，导致在用户浏览器会话中注入并执行任意HTML和脚本代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-0664

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-0664

请登录查看更多情报信息。

http://mahara.org/interaction/forum/topic.php?id=532x_refsource_CONFIRM
http://secunia.com/advisories/34789third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/53892vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/34677vdb-entryx_refsource_BID
http://osvdb.org/53891vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/34871third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2009/dsa-1778vendor-advisoryx_refsource_DEBIAN
https://nvd.nist.gov/vuln/detail/CVE-2009-0664

Same Patch Batch · n/a · 2009-04-23 · 25 CVEs total

CVE-2009-0662		Plone PlonePAS 未明身份认证绕过漏洞
CVE-2009-1372		ClamAV 'libclamav/phishcheck.c'栈溢出漏洞
CVE-2009-1371		ClamAV 'libclamav/others.h'UPack拒绝服务漏洞
CVE-2009-1357		Sun Java System Delegated Administrator 'DA/Login'HTTP响应拆分漏洞
CVE-2009-1191		Apache 输入验证错误漏洞
CVE-2009-1183		XPDF 资源管理错误漏洞
CVE-2009-1182		Foolabs Xpdf解码器JBIG2 MMR多个缓冲区溢出漏洞
CVE-2009-1181		XPDF 资源管理错误漏洞
CVE-2009-1180		Foolabs Xpdf解码器JBIG2残缺数据释放和拒绝服务攻击漏洞
CVE-2009-1179		XPDF 数字错误漏洞
CVE-2009-0800		XPDF 输入验证错误漏洞
CVE-2009-0799		Foolabs Xpdf 解码器JBIG2 空指针引用漏洞
CVE-2009-0165		Foolabs Xpdf解码器JBIG2整数溢出漏洞
CVE-2009-0195		Foolabs Xpdf 解码器JBIG2 堆缓冲区溢出和代码执行漏洞
CVE-2009-0166		Foolabs Xpdf解码器JBIG2空指针引用漏洞
CVE-2009-0163		Apple CUPS _cupsImageReadTIFF()函数整数溢出漏洞
CVE-2009-0147		Foolabs Xpdf解码器JBIG2多个整数溢出漏洞
CVE-2009-0146		Foolabs Xpdf解码器JBIG2多个缓冲区溢出漏洞
CVE-2008-6747		dotProject 安全绕过漏洞
CVE-2008-6746		Horde Turba Contact Manager跨站脚本攻击漏洞

Showing top 20 of 25 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-0664

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-0664

I. Basic Information for CVE-2009-0664

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-0664

III. Intelligence Information for CVE-2009-0664

Same Patch Batch · n/a · 2009-04-23 · 25 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-0664

Leave a comment