CVE-2021-44543

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Privoxy (affected versions not specified)

Description: A cross-site scripting (XSS) issue was discovered in Privoxy. The problem was addressed by encoding the template name in the cgi error no template() function when Privoxy is set to serve the user manual itself.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-79

Related Identifiers

ALT-PU-2021-3560

ALT-PU-2022-2439

ALT-PU-2024-13795

BDU:2025-12569

BDU:2025-12570

BDU:2025-12571

BDU:2025-12572

CVE-2021-44543

DLA-2844-1

MGASA-2021-0570

OPENSUSE-SU-2021:1646-1

OPENSUSE-SU-2021_1646-1

OPENSUSE-SU-2022:10186-1

OPENSUSE-SU-2024:11677-1

USN-5826-1

Affected Products

Alt Linux

Linuxmint

Privoxy

Red Os

Suse

Ubuntu

CVE-2021-44543

Weakness Enumeration

Related Identifiers

Affected Products

References · 46