Lucene search
K

11 matches found

nessus
nessus
added 2025/09/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-5283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ViewVC before versions 1.1.28 and 1.2.1 has a XSS vulnerability in CVS showsubdirlastmod support. The impact of this vulnerability is mitigated by the need for ...

3.5CVSS5.2AI score0.01216EPSS
Exploits1References2
susecve
susecve
added 2023/02/15 4:3 a.m.4 views

SUSE CVE-2020-5283

ViewVC before versions 1.1.28 and 1.2.1 has a XSS vulnerability in CVS showsubdirlastmod support. The impact of this vulnerability is mitigated by the need for an attacker to have commit privileges to a CVS repository exposed by an otherwise trusted ViewVC instance that also has the...

3.5CVSS4.4AI score0.01216EPSS
Exploits1References7
openvas
openvas
added 2022/01/28 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2020-0221)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.5CVSS3.9AI score0.01216EPSS
Exploits1References7
openvas
openvas
added 2021/04/16 12:0 a.m.15 views

openSUSE: Security Advisory for viewvc (openSUSE-SU-2021:0084-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

3.5CVSS3.9AI score0.01216EPSS
Exploits1References2
openvas
openvas
added 2021/04/16 12:0 a.m.13 views

openSUSE: Security Advisory for viewvc (openSUSE-SU-2021:0123-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

3.5CVSS3.9AI score0.01216EPSS
Exploits1References2
nessus
nessus
added 2021/01/25 12:0 a.m.25 views

openSUSE Security Update : viewvc (openSUSE-2021-84)

This update for viewvc fixes the following issues : - update to 1.1.28 boo1167974, CVE-2020-5283 : - security fix: escape subdir lastmod file name 211 - fix standalone.py first request failure 195 - suppress stack traces with option to show 140 - distinguish text/binary/image files by icons 166,...

3.5CVSS5.2AI score0.01216EPSS
Exploits1References2
nessus
nessus
added 2021/01/25 12:0 a.m.24 views

openSUSE Security Update : viewvc (openSUSE-2021-123)

This update for viewvc fixes the following issues : - update to 1.1.28 boo1167974, CVE-2020-5283 : - security fix: escape subdir lastmod file name 211 - fix standalone.py first request failure 195 - suppress stack traces with option to show 140 - distinguish text/binary/image files by icons 166,...

3.5CVSS5.2AI score0.01216EPSS
Exploits1References2
mageia
mageia
added 2020/05/24 6:4 p.m.27 views

Updated viewvc packages fix security vulnerability

Updated viewvc package fixes security vulnerability: ViewVC before versions 1.1.28 has an XSS vulnerability in CVS showsubdirlastmod support. The impact of this vulnerability is mitigated by the need for an attacker to have commit privileges to a CVS repository exposed by an otherwise trusted...

3.5CVSS1.9AI score0.01216EPSS
Exploits1References5
nessus
nessus
added 2020/05/15 12:0 a.m.41 views

Fedora 30 : viewvc (2020-c952520959)

Fix for CVE-2020-5283. ViewVC 1.1.28 ChangeLog - security fix: escape subdir lastmod file name 211 - fix standalone.py first request failure 195 ViewVC 1.1.27 ChangeLog : - suppress stack traces with option to show 140 - distinguish text/binary/image files by icons 166, 175 - colorize alternating...

3.5CVSS5.2AI score0.01216EPSS
Exploits1References2
cvelist
cvelist
added 2020/04/03 12:10 a.m.19 views

CVE-2020-5283 XSS vulnerability in CVS show_subdir_lastmod support

ViewVC before versions 1.1.28 and 1.2.1 has a XSS vulnerability in CVS showsubdirlastmod support. The impact of this vulnerability is mitigated by the need for an attacker to have commit privileges to a CVS repository exposed by an otherwise trusted ViewVC instance that also has the...

3.1CVSS3.3AI score0.01216EPSS
Exploits1References4
cve
cve
added 2020/04/03 12:10 a.m.172 views

CVE-2020-5283

CVE-2020-5283 - ViewVC XSS in show_subdir_lastmod is confirmed by connected sources: vulnerable before 1.1.28 and 1.2.1 due to unsafe handling of file names in CVS show_subdir_lastmod. Exploitation requires a user with CVS commit privileges on a trusted ViewVC instance with show_subdir_lastmod en...

3.5CVSS3.3AI score0.01216EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder