Moderate severityNVD Advisory· Published Aug 26, 2009· Updated Jun 16, 2026
CVE-2009-2967
CVE-2009-2967
Description
Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 through 0.7.11p2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, different vulnerabilities than CVE-2009-2959.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
buildbotPyPI | >= 0.7.6, < 0.7.11p3 | 0.7.11p3 |
Affected products
11cpe:2.3:a:buildbot:buildbot:0.7.10:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:buildbot:buildbot:0.7.10:*:*:*:*:*:*:*
- cpe:2.3:a:buildbot:buildbot:0.7.10p1:*:*:*:*:*:*:*
- cpe:2.3:a:buildbot:buildbot:0.7.11:*:*:*:*:*:*:*
- cpe:2.3:a:buildbot:buildbot:0.7.11p1:*:*:*:*:*:*:*
- cpe:2.3:a:buildbot:buildbot:0.7.11p2:*:*:*:*:*:*:*
- cpe:2.3:a:buildbot:buildbot:0.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:buildbot:buildbot:0.7.7:*:*:*:*:*:*:*
- cpe:2.3:a:buildbot:buildbot:0.7.8:*:*:*:*:*:*:*
- cpe:2.3:a:buildbot:buildbot:0.7.9:*:*:*:*:*:*:*
- (no CPE)range: >=0.7.6, <=0.7.11p2
Patches
Vulnerability mechanics
References
13- buildbot.net/tracnvdPatchVendor AdvisoryWEB
- www.vupen.com/english/advisories/2009/2352nvdPatchVendor AdvisoryWEB
- secunia.com/advisories/36352nvdVendor AdvisoryWEB
- secunia.com/advisories/36418nvdVendor AdvisoryWEB
- github.com/advisories/GHSA-mj3x-wprp-mvj9ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2009-2967ghsaADVISORY
- sourceforge.net/mailarchive/message.phpnvdWEB
- www.securityfocus.com/bid/36100nvdWEB
- exchange.xforce.ibmcloud.com/vulnerabilities/52896nvdWEB
- github.com/buildbot/buildbot/commit/78f7942b5056ab75c27f491b6fd6f266699c15e3ghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/buildbot/PYSEC-2009-2.yamlghsaWEB
- www.redhat.com/archives/fedora-package-announce/2009-August/msg00978.htmlnvdWEB
- www.redhat.com/archives/fedora-package-announce/2009-August/msg00985.htmlnvdWEB
News mentions
0No linked articles in our index yet.