CVE-2016-10245

Insufficient sanitization of the query parameter in templates/html/search_opensearch.php could lead to reflected cross-site scripting or iframe injection.

References

Affected packages

Git / github.com/doxygen/doxygen

Affected ranges

Type

GIT

Repo

https://github.com/doxygen/doxygen

Events

Introduced

Fixed

4951df8d0d0acf843b4147136f945504b96536e7

Fixed

1cc1adad2de03a0f013881b8960daf89aa155081

Database specific

{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.8.12"
        }
    ],
    "cpe": "cpe:2.3:a:doxygen:doxygen:*:*:*:*:*:*:*:*",
    "source": [
        "CPE_RANGE",
        "REFERENCES"
    ]
}

Affected versions

Other

Release_1_8_10

Release_1_8_11

Release_1_8_5

Release_1_8_6

Release_1_8_7

Release_1_8_8

Release_1_8_9

Release_1_8_9_1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-10245.json"