VYPR
← All advisories
Unrated severityNVD Advisory· Published Nov 30, 2011· Updated Apr 29, 2026

CVE-2011-4345

CVE-2011-4345

Description

Cross-site scripting (XSS) vulnerability in Namazu before 2.0.21, when Internet Explorer 6 or 7 is used, allows remote attackers to inject arbitrary web script or HTML via a cookie.

Affected products

11
  • Namazu/Namazu11 versions
    cpe:2.3:a:namazu:namazu:*:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:namazu:namazu:*:*:*:*:*:*:*:*range: <=2.0.20
    • cpe:2.3:a:namazu:namazu:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.13:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.14:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.15:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.16:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.17:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.18:*:*:*:*:*:*:*
    • cpe:2.3:a:namazu:namazu:2.0.19:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.