5 matches found
CVE-2024-27140
UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Archiva. This issue affects Apache Archiva: from 2.0.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended...
org.apache.archiva:archiva-artifact-converter (>=2.0.0 <=2.1.0), org.apache.archiva:archiva-checksum (>=2.0.0 <=2.2.10) +43 more potentially affected by CVE-2024-27140 via org.apache.archiva:archiva-common (>=2.0.0 <=2.2.10)
org.apache.archiva:archiva-common MAVEN version =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.2.1, =2.0.0, =2.2.10 and more Source cves: CVE-2024-27140 Source advisory: OSV:GHSA-HP2X-6VRM-7J7V...
CVE-2024-27140
UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Archiva. This issue affects Apache Archiva: from 2.0.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended...
CVE-2024-27140 Apache Archiva: reflected XSS
UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Archiva. This issue affects Apache Archiva: from 2.0.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended...
CVE-2024-27140
Apache Archiva is affected by a Cross-site Scripting (XSS) issue described as Improper Neutralization of Input During Web Page Generation. The vulnerability affects Archiva versions 2.0.0 and later, with the project stated as retired and no plan for a fix. Practical impact is an XSS risk in web p...