CVE-2010-1448
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2010-1448
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR Cross Referencer before 0.9.8 allows remote attackers to inject arbitrary web script or HTML via vectors related to a string in the search page's TITLE element, a different vulnerability than CVE-2009-4497 and CVE-2010-1625.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
LXR Cross Referencer 'lib/LXR/Common.pm'跨站脚本攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
LXR Cross Referencer是分析阅读源代码的工具。 LXR Cross Referencer 0.9.8之前版本的lib/LXR/Common.pm中存在跨站脚本攻击漏洞。远程攻击者可以借助与搜索页面的TITLE元素的字符串相关的向量注入任意的web脚本和HTML。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2010-1448
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2010-1448
Please Login to view more intelligence information
Same Patch Batch · n/a · 2010-06-23 · 20 CVEs total
| CVE-2010-1203 | Mozilla Firefox JavaScript引擎拒绝服务漏洞 | |
| CVE-2010-2429 | Splunk跨站脚本漏洞 | |
| CVE-2010-2428 | Wing FTP Server 'admin_loginok.html'跨站脚本攻击漏洞 | |
| CVE-2010-2426 | South River Technologies Titan FTP Server TitanFTPd目录遍历漏洞 | |
| CVE-2010-2425 | South River Technologies Titan FTP Server TitanFTPd目录遍历漏洞 | |
| CVE-2010-2422 | Plone 'safe_html'跨站脚本攻击漏洞 | |
| CVE-2010-2225 | PHP SplObjectStorage unserializer释放后使用漏洞 | |
| CVE-2010-2067 | LibTIFF 缓冲区错误漏洞 | |
| CVE-2010-2065 | LibTIFF TIFFroundup()宏整数溢出漏洞 | |
| CVE-2010-1625 | LXR Cross Referencer跨站脚本攻击漏洞 | |
| CVE-2010-2433 | IBM WebSphere ILOG JRules 'content/internalError.jsp'多个跨站脚本攻击漏洞 | |
| CVE-2010-1202 | Mozilla Firefox JavaScript引擎多个未明漏洞 | |
| CVE-2010-1201 | Mozilla Firefox未明漏洞 | |
| CVE-2010-1200 | Mozilla Firefox多个未明拒绝服务漏洞 | |
| CVE-2010-1199 | Mozilla Firefox整数溢出漏洞 | |
| CVE-2010-1198 | Mozilla Firefox释放后使用漏洞 | |
| CVE-2010-1197 | Mozilla Firefox HTML文档跨站攻击漏洞 | |
| CVE-2010-1196 | Mozilla Firefox XSLT nsGenericDOMDataNode::SetTextInternal函数整数溢出漏洞 | |
| CVE-2010-0183 | Mozilla Firefox nsCycleCollector::MarkRoots函数释放后使用漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service - CVE-2026-8267
Open5GS SMF smf_nsmf_handle_created_data_in_vsmf denial of s - CVE-2026-8266
Open5GS SMF gsm-build.c gsm_build_pdu_session_establishment_ - CVE-2026-8261
Squirrel sqobject.cpp Load heap-based overflow - CVE-2026-8258
Squirrel sqstdstring.cpp validate_format stack-based overflo
V. Comments for CVE-2010-1448
No comments yet