CVE-2018-0499
02.07.2018, 12:29
A cross-site scripting vulnerability in queryparser/termgenerator_internal.cc in Xapian xapian-core before 1.4.6 exists due to incomplete HTML escaping by Xapian::MSet::snippet().
| Vendor | Product | Version |
|---|---|---|
| xapian | xapian-core | 𝑥 < 1.4.6 |
| canonical | ubuntu_linux | 17.10 |
| canonical | ubuntu_linux | 18.04 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
References