2 matches found
Apache Archiva 1.2.x <= 1.2.2 / 1.3.x <= 1.3.6 Multiple Vulnerabilities
According to its self-reported version, the instance of Apache Archiva hosted on the remote web server is 1.2.x prior than or equal to 1.2.2 or 1.3.x prior than or equal to 1.3.6 and thus is affected by the following vulnerabilities : - An input validation error exists related to unspecified...
CVE-2013-2187
CVE-2013-2187 affects Apache Archiva: XSS in the Home Page parameter handling. Vulnerable versions are Archiva 1.2.x up to 1.2.2 and 1.3 up to 1.3.6 (before 1.3.8); the issue allows injection of arbitrary HTML/JS via unspecified parameters. The root cause is input validation related to the home p...