15 matches found
Gitweb <= 1.7.3.3 - Cross Site Scripting
No description provided by source. -8 Description 8- Cross-site scripting XSS vulnerability in Gitweb 1.7.3.3 and previous versions allows remote attackers to inject arbitrary web script or HTML code via f and fp variables. -8 Proof Of Concept 8-...
openSUSE Security Update : git (openSUSE-SU-2011:0115-1)
This update fixes two vulnerabilities : XSS vulnerability in gitweb; a remote attacker could craft an URL such that arbitrary content would be inserted to the generated web page. Stack overflow vulnerability that can lead to arbitrary code execution if user runs any git command on a specially...
git security update
1.7.1-3.1 - fix CVE-2013-0308 1.7.1-3 - fix CVE-2010-3906...
openSUSE Security Update : git (openSUSE-SU-2011:0115-1)
This update fixes two vulnerabilities : XSS vulnerability in gitweb; a remote attacker could craft an URL such that arbitrary content would be inserted to the generated web page. Stack overflow vulnerability that can lead to arbitrary code execution if user runs any git command on a specially...
Security fix for the ALT Linux 5 package git version 1.7.3.5-alt0.M50P.1
Jan. 20, 2011 Andrey Cherepanov 1.7.3.5-alt0.M50P.1 - backport to p5 fixes CVE-2010-3906...
Fedora Update for git FEDORA-2010-18973
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for git FEDORA-2010-18981
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 14 : git-1.7.3.4-1.fc14 (2010-18981)
Update to 1.7.3.4 release which fixes various issues, notably : - cross-site scripting XSS flaw was found in the web interface of Git distributed revision control system. A remote attacker could use this flaw to execute arbitrary HTML or scripting code by providing a certain URL with specially...
CVE-2010-3906
Cross-site scripting XSS vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 f and 2 fp parameters...
CVE-2010-3906
CVE-2010-3906 is an XSS in gitweb (Git web interface) for Git versions up to 1.7.3.3 and earlier, exploitable via the f and fp parameters to craft arbitrary script/HTML. Multiple advisories report remote injection through gitweb, with openSUSE openSUSE-SU-2011:0115-1 and Debian backports patches ...
Security fix for the ALT Linux 5 package git version 1.7.3.4-alt1
Dec. 16, 2010 Dmitry V. Levin 1.7.3.4-alt1 - Updated to maint v1.7.3.4 fixes an XSS in gitweb, see CVE-2010-3906...
Security fix for the ALT Linux 8 package git version 1.7.3.4-alt1
Dec. 16, 2010 Dmitry V. Levin 1.7.3.4-alt1 - Updated to maint v1.7.3.4 fixes an XSS in gitweb, see CVE-2010-3906...
Security fix for the ALT Linux 10 package git version 1.7.3.4-alt1
Dec. 16, 2010 Dmitry V. Levin 1.7.3.4-alt1 - Updated to maint v1.7.3.4 fixes an XSS in gitweb, see CVE-2010-3906...
gitWeb 1.7.3.3 - Cross-Site Scripting
-8 Description 8--8 Proof Of Concept 8- " -8 Credits 8- -8 Responsible Disclosure 8- 13-12-2010 Initial contact with upstream and vendor-sec 13-12-2010 Vendor Response and CVE-2010-3906 assignation 15-12-2010 Public Disclosure...
gitWeb 1.7.3.3 - Cross-Site Scripting
gitWeb 1.7.3.3 - Cross-Site Scripting -8 Description 8--8 Proof Of Concept 8- " -8 Credits 8- -8 Responsible Disclosure 8- 13-12-2010 Initial contact with upstream and vendor-sec 13-12-2010 Vendor Response and CVE-2010-3906 assignation 15-12-2010 Public Disclosure...