Lucene search
GoogleOSV:GHSA-QJMG-77XH-7MJWHistoryMay 17, 2022 - 2:01 a.m.
Loggerhead XSS via filename
2022-05-1702:01:56
Google
osv.dev
2
cross-site scripting
loggerhead
remote authenticated users
arbitrary web script
html
filename
revision view.
Cross-site scripting (XSS) vulnerability in templatefunctions.py in Loggerhead before 1.18.1 allows remote authenticated users to inject arbitrary web script or HTML via a filename, which is not properly handled in a revision view.
References
lists.fedoraproject.org/pipermail/package-announce/2011-April/057413.html
lists.fedoraproject.org/pipermail/package-announce/2011-April/057479.html
lists.fedoraproject.org/pipermail/package-announce/2011-April/057502.html
bugs.launchpad.net/loggerhead/+bug/740142
exchange.xforce.ibmcloud.com/vulnerabilities/66305
launchpad.net/loggerhead/1.18/1.18.1
nvd.nist.gov/vuln/detail/CVE-2011-0728
web.archive.org/web/20200228162139/www.securityfocus.com/bid/47032
Related
nessus
nessus
Fedora 13 : loggerhead-1.18.1-1.fc13 (2011-4107)
2011-04-04 00:00:00
Fedora 15 : loggerhead-1.18.1-1.fc15 (2011-4050)
2011-04-04 00:00:00
Fedora 14 : loggerhead-1.18.1-1.fc14 (2011-4085)
2011-04-04 00:00:00
openvas
openvas
Fedora Update for loggerhead FEDORA-2011-4107
2011-04-06 00:00:00
Fedora Update for loggerhead FEDORA-2011-4107
2011-04-06 00:00:00
Fedora Update for loggerhead FEDORA-2011-4085
2011-04-06 00:00:00
prion
prion
Cross site scripting
2011-03-29 18:55:00
debiancve
debiancve
CVE-2011-0728
2011-03-29 18:55:01
fedora
fedora
[SECURITY] Fedora 15 Update: loggerhead-1.18.1-1.fc15
2011-04-02 05:54:37
[SECURITY] Fedora 14 Update: loggerhead-1.18.1-1.fc14
2011-04-02 22:48:36
[SECURITY] Fedora 13 Update: loggerhead-1.18.1-1.fc13
2011-04-02 22:52:27
cve
cve
CVE-2011-0728
2011-03-29 18:55:01
ubuntucve
ubuntucve
CVE-2011-0728
2011-03-29 00:00:00
nvd
nvd
CVE-2011-0728
2011-03-29 18:55:01
github
github
Loggerhead XSS via filename
2022-05-17 02:01:56
cvelist
cvelist
CVE-2011-0728
2011-03-29 18:00:00