Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2010/03/26 12:0 a.m.26 views

openSUSE Security Update : viewvc (viewvc-2147)

Query forms didn't escape user provided input, therefore allowing cross-site-scripting XSS attacks. CVE-2010-0736 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...

4.3CVSS5.1AI score0.01691EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/03/26 12:0 a.m.21 views

openSUSE Security Update : viewvc (viewvc-2147)

Query forms didn't escape user provided input, therefore allowing cross-site-scripting XSS attacks. CVE-2010-0736 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...

4.3CVSS5.1AI score0.01691EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2010/03/19 7:30 p.m.25 views

CVE-2010-0736

Cross-site scripting XSS vulnerability in the viewqueryform function in lib/viewvc.py in ViewVC before 1.0.10, and 1.1.x before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via "user-provided input."...

4.3CVSS6AI score0.01691EPSS
Exploits0References1
Cvelist
Cvelist
added 2010/03/19 7:0 p.m.24 views

CVE-2010-0736

Cross-site scripting XSS vulnerability in the viewqueryform function in lib/viewvc.py in ViewVC before 1.0.10, and 1.1.x before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via "user-provided input."...

5.4AI score0.01691EPSS
Exploits0References4
CVE
CVE
added 2010/03/19 7:0 p.m.66 views

CVE-2010-0736

The CVE-2010-0736 issue affects ViewVC where the view_queryform function in lib/viewvc.py is vulnerable to XSS via user-provided input. Affected ranges are ViewVC prior to 1.0.10 and 1.1.x prior to 1.1.4. The vulnerability allows remote attackers to inject arbitrary script/HTML and is confirmed a...

4.3CVSS5.5AI score0.01691EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2010/03/19 7:0 p.m.27 views

CVE-2010-0736

Removed by vendor...

4.3CVSS6.7AI score0.01691EPSS
Exploits0
Rows per page
Query Builder