VYPR
Unrated severityNVD Advisory· Published Jun 25, 2009· Updated Jun 16, 2026

CVE-2009-2215

CVE-2009-2215

Description

Multiple cross-site scripting (XSS) vulnerabilities in URD before 0.6.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to the fatal_error page and unspecified other components.

Affected products

5
  • Urdland/Urd4 versions
    cpe:2.3:a:urdland:urd:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:urdland:urd:*:*:*:*:*:*:*:*range: <=0.6.1
    • cpe:2.3:a:urdland:urd:0.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:urdland:urd:0.5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:urdland:urd:0.6.0:*:*:*:*:*:*:*
  • URD/URDllm-fuzzy
    Range: <0.6.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.