CVE-2008-1474
NONE EPSS 70.9%
Published Mar 24, 200818y ago · Modified Jun 16, 20262w ago
Published Mar 24, 2008 18y ago
Last Modified Jun 16, 2026 2w ago
Description
Multiple unspecified vulnerabilities in Roundup before 1.4.4 have unknown impact and attack vectors, some of which may be related to cross-site scripting (XSS).
Threat Intelligence
EPSS Exploit Probability
70.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-79 Cross-site Scripting Injection
Affected Products 94
| Vendor | Product | Version | Range |
|---|---|---|---|
| roundup-tracker | roundup | * | ≤1.4.3 |
| roundup-tracker | roundup | 0.1.0 | any |
| roundup-tracker | roundup | 0.1.1 | any |
| roundup-tracker | roundup | 0.1.2 | any |
| roundup-tracker | roundup | 0.1.3 | any |
| roundup-tracker | roundup | 0.2.0 | any |
| roundup-tracker | roundup | 0.2.1 | any |
| roundup-tracker | roundup | 0.2.2 | any |
| roundup-tracker | roundup | 0.2.3 | any |
| roundup-tracker | roundup | 0.2.4 | any |
| roundup-tracker | roundup | 0.2.5 | any |
| roundup-tracker | roundup | 0.2.6 | any |
| roundup-tracker | roundup | 0.2.7 | any |
| roundup-tracker | roundup | 0.2.8 | any |
| roundup-tracker | roundup | 0.3.0 | any |
| roundup-tracker | roundup | 0.3.0 | any |
| roundup-tracker | roundup | 0.3.0 | any |
| roundup-tracker | roundup | 0.3.0 | any |
| roundup-tracker | roundup | 0.4.0 | any |
| roundup-tracker | roundup | 0.4.0 | any |
| roundup-tracker | roundup | 0.4.0 | any |
| roundup-tracker | roundup | 0.4.1 | any |
| roundup-tracker | roundup | 0.4.2 | any |
| roundup-tracker | roundup | 0.4.2 | any |
| roundup-tracker | roundup | 0.5 | any |
| roundup-tracker | roundup | 0.5.0 | any |
| roundup-tracker | roundup | 0.5.0 | any |
| roundup-tracker | roundup | 0.5.0 | any |
| roundup-tracker | roundup | 0.5.0 | any |
| roundup-tracker | roundup | 0.5.1 | any |
| roundup-tracker | roundup | 0.5.2 | any |
| roundup-tracker | roundup | 0.5.3 | any |
| roundup-tracker | roundup | 0.5.4 | any |
| roundup-tracker | roundup | 0.5.5 | any |
| roundup-tracker | roundup | 0.5.6 | any |
| roundup-tracker | roundup | 0.5.7 | any |
| roundup-tracker | roundup | 0.5.8 | any |
| roundup-tracker | roundup | 0.5.9 | any |
| roundup-tracker | roundup | 0.6.0 | any |
| roundup-tracker | roundup | 0.6.0 | any |
| roundup-tracker | roundup | 0.6.0 | any |
| roundup-tracker | roundup | 0.6.0 | any |
| roundup-tracker | roundup | 0.6.0 | any |
| roundup-tracker | roundup | 0.6.1 | any |
| roundup-tracker | roundup | 0.6.2 | any |
| roundup-tracker | roundup | 0.6.3 | any |
| roundup-tracker | roundup | 0.6.4 | any |
| roundup-tracker | roundup | 0.6.5 | any |
| roundup-tracker | roundup | 0.6.6 | any |
| roundup-tracker | roundup | 0.6.7 | any |
| roundup-tracker | roundup | 0.6.8 | any |
| roundup-tracker | roundup | 0.6.9 | any |
| roundup-tracker | roundup | 0.6.10 | any |
| roundup-tracker | roundup | 0.6.11 | any |
| roundup-tracker | roundup | 0.7.0 | any |
| roundup-tracker | roundup | 0.7.0 | any |
| roundup-tracker | roundup | 0.7.0 | any |
| roundup-tracker | roundup | 0.7.0 | any |
| roundup-tracker | roundup | 0.7.1 | any |
| roundup-tracker | roundup | 0.7.2 | any |
| roundup-tracker | roundup | 0.7.3 | any |
| roundup-tracker | roundup | 0.7.4 | any |
| roundup-tracker | roundup | 0.7.5 | any |
| roundup-tracker | roundup | 0.7.6 | any |
| roundup-tracker | roundup | 0.7.7 | any |
| roundup-tracker | roundup | 0.7.8 | any |
| roundup-tracker | roundup | 0.7.9 | any |
| roundup-tracker | roundup | 0.7.10 | any |
| roundup-tracker | roundup | 0.7.11 | any |
| roundup-tracker | roundup | 0.7.12 | any |
| roundup-tracker | roundup | 0.8.0 | any |
| roundup-tracker | roundup | 0.8.0 | any |
| roundup-tracker | roundup | 0.8.0 | any |
| roundup-tracker | roundup | 0.8.1 | any |
| roundup-tracker | roundup | 0.8.2 | any |
| roundup-tracker | roundup | 0.8.3 | any |
| roundup-tracker | roundup | 0.8.4 | any |
| roundup-tracker | roundup | 0.8.5 | any |
| roundup-tracker | roundup | 0.8.6 | any |
| roundup-tracker | roundup | 0.9.0 | any |
| roundup-tracker | roundup | 1.0 | any |
| roundup-tracker | roundup | 1.0.1 | any |
| roundup-tracker | roundup | 1.1.0 | any |
| roundup-tracker | roundup | 1.1.1 | any |
| roundup-tracker | roundup | 1.1.2 | any |
| roundup-tracker | roundup | 1.2.0 | any |
| roundup-tracker | roundup | 1.2.1 | any |
| roundup-tracker | roundup | 1.3.0 | any |
| roundup-tracker | roundup | 1.3.1 | any |
| roundup-tracker | roundup | 1.3.2 | any |
| roundup-tracker | roundup | 1.3.3 | any |
| roundup-tracker | roundup | 1.4.0 | any |
| roundup-tracker | roundup | 1.4.1 | any |
| roundup-tracker | roundup | 1.4.2 | any |
References 13
- roundup.cvs.sourceforge.net http://roundup.cvs.sourceforge.net/roundup/roundup/CHANGES.txt?revision=1.939&view=markup
- secunia.com http://secunia.com/advisories/29336
- secunia.com http://secunia.com/advisories/29375
- secunia.com http://secunia.com/advisories/29848
- secunia.com http://secunia.com/advisories/30274
- security.gentoo.org http://security.gentoo.org/glsa/glsa-200805-21.xml
- debian.org http://www.debian.org/security/2008/dsa-1554
- securityfocus.com http://www.securityfocus.com/bid/28239
- vupen.com http://www.vupen.com/english/advisories/2008/0891
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=436546
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/41241
- redhat.com https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00264.html
- redhat.com https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00375.html
Remediation
- roundup.cvs.sourceforge.net http://roundup.cvs.sourceforge.net/roundup/roundup/CHANGES.txt?revision=1.939&view=markup
- secunia.com http://secunia.com/advisories/29848
- securityfocus.com http://www.securityfocus.com/bid/28239