VYPR
Unrated severityNVD Advisory· Published Jun 10, 2009· Updated Jun 16, 2026

CVE-2009-1714

CVE-2009-1714

Description

Cross-site scripting (XSS) vulnerability in Web Inspector in WebKit in Apple Safari before 4.0 allows user-assisted remote attackers to inject arbitrary web script or HTML, and read local files, via vectors related to the improper escaping of HTML attributes.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

36
  • Apple Inc./Safari35 versions
    cpe:2.3:a:apple:safari:0.8:-:mac:*:*:*:*:*+ 34 more
    • cpe:2.3:a:apple:safari:0.8:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:0.9:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.0.3:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.0:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.1:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.2:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3.1:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3.2:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:1.3:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0.2:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0.4:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:2.0:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.1:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.2:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.2:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.3:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.3:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.4:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0.4:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.0:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.1:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.1:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.2:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1.2:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.1:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.1:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.1:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.2:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2.3:-:mac:*:*:*:*:*
    • cpe:2.3:a:apple:safari:3.2:-:windows:*:*:*:*:*
    • cpe:2.3:a:apple:safari:*:-:mac:*:*:*:*:*range: <=4.0_beta
    • cpe:2.3:a:apple:safari:*:-:windows:*:*:*:*:*range: <=3.2.3
    • (no CPE)range: <4.0
  • osv-coords
    Range: < 4:4.6.3-1

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.