CVE-2009-0934

Description

Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to links and MUC logs.

Affected packages (2)

• Debian/ejabberdfrom 0, < 2.0.5-1
• Debian/ejabberdfrom 0, < 2.0.1-6+lenny1

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-0934