3 matches found
SUSE CVE-2012-4533
Cross-site scripting XSS vulnerability in the "extra" details in the DiffSource.getrow function in lib/viewvc.py in ViewVC 1.0.x before 1.0.13 and 1.1.x before 1.1.16 allows remote authenticated users with repository commit access to inject arbitrary web script or HTML via the "function name" lin...
WordPress Photoracer plugin <= 1.0 - SQL Injection Vulnerability
No description provided by source. Exploit Title: WordPress Photoracer plugin = 1.0 SQL Injection Vulnerability Google Dork: inurl:wp-content/plugins/photoracer/viewimg.php Date: 2011-08-26 Author: evilsocket evilsocket at gmail dot com Software Link: http://wordpress.org/extend/plugins/photorace...
UBUNTU-CVE-2012-4533
Cross-site scripting XSS vulnerability in the "extra" details in the DiffSource.getrow function in lib/viewvc.py in ViewVC 1.0.x before 1.0.13 and 1.1.x before 1.1.16 allows remote authenticated users with repository commit access to inject arbitrary web script or HTML via the "function name" lin...