Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 11:22 a.m.10 views

CVE-2024-27140

UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Archiva. This issue affects Apache Archiva: from 2.0.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended...

5.4CVSS6.6AI score0.01341EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/03/01 6:30 p.m.9 views

org.apache.archiva:archiva-artifact-converter (>=2.0.0 <=2.1.0), org.apache.archiva:archiva-checksum (>=2.0.0 <=2.2.10) +43 more potentially affected by CVE-2024-27140 via org.apache.archiva:archiva-common (>=2.0.0 <=2.2.10)

org.apache.archiva:archiva-common MAVEN version =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.2.1, =2.0.0, =2.2.10 and more Source cves: CVE-2024-27140 Source advisory: OSV:GHSA-HP2X-6VRM-7J7V...

5.4CVSS6AI score0.01341EPSS
Exploits0
NVD
NVD
added 2024/03/01 4:15 p.m.26 views

CVE-2024-27140

UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Archiva. This issue affects Apache Archiva: from 2.0.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended...

5.4CVSS6.3AI score0.01341EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/01 3:40 p.m.15 views

CVE-2024-27140 Apache Archiva: reflected XSS

UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Archiva. This issue affects Apache Archiva: from 2.0.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended...

5.3AI score0.01341EPSS
Exploits0References2
CVE
CVE
added 2024/03/01 3:40 p.m.102 views

CVE-2024-27140

Apache Archiva is affected by a Cross-site Scripting (XSS) issue described as Improper Neutralization of Input During Web Page Generation. The vulnerability affects Archiva versions 2.0.0 and later, with the project stated as retired and no plan for a fix. Practical impact is an XSS risk in web p...

5.4CVSS5.3AI score0.01341EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder