FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  496197
Date:      2019-03-18
Time:      18:25:00Z
Committer: sunpoet

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
4775c807-8f30-11dd-821f-001cc0377035mysql -- command line client input validation vulnerability

Thomas Henlich reports:

The mysql command-line client does not quote HTML special characters like < in its output. This allows an attacker who is able to write data into a table to hide or modify records in the output, and to inject potentially dangerous code, e. g. Javascript to perform cross-site scripting or cross-site request forgery attacks.


Discovery 2007-04-17
Entry 2008-10-01
Modified 2008-10-10
mysql-client
gt 5.1 lt 5.1.28_1

gt 5.0 lt 5.0.67_1

31486
http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability/
4775c807-8f30-11dd-821f-001cc0377035mysql -- command line client input validation vulnerability

Thomas Henlich reports:

The mysql command-line client does not quote HTML special characters like < in its output. This allows an attacker who is able to write data into a table to hide or modify records in the output, and to inject potentially dangerous code, e. g. Javascript to perform cross-site scripting or cross-site request forgery attacks.


Discovery 2007-04-17
Entry 2008-10-01
Modified 2008-10-10
mysql-client
gt 5.1 lt 5.1.28_1

gt 5.0 lt 5.0.67_1

31486
http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability/
7fe7df75-6568-11e6-a590-14dae9d210b8End of Life Ports

These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take caution and find alternative software as soon as possible.


Discovery 2016-08-18
Entry 2016-08-18
Modified 2016-10-18
python32
python31
python30
python26
python25
python24
python23
python22
python21
python20
python15
ge 0

php54
php53
php52
php5
php4
ge 0

perl5
lt 5.18

perl5.16
perl5.14
perl5.12
perl
ge 0

ruby
ruby_static
lt 2.1,1

unifi2
unifi3
ge 0

apache21
apache20
apache13
ge 0

tomcat55
tomcat41
ge 0

mysql51-client
mysql51-server
mysql50-client
mysql50-server
mysql41-client
mysql41-server
mysql40-client
mysql40-server
ge 0

postgresql90-client
postgresql90-server
postgresql84-client
postgresql84-server
postgresql83-client
postgresql83-server
postgresql82-client
postgresql82-server
postgresql81-client
postgresql81-server
postgresql80-client
postgresql80-server
postgresql74-client
postgresql74-server
postgresql73-client
postgresql73-server
postgresql72-client
postgresql72-server
postgresql71-client
postgresql71-server
postgresql7-client
postgresql7-server
ge 0

ports/211975