11 matches found
PT-2025-46724
Name of the Vulnerable Software and Affected Versions Tuleap Community Edition versions prior to 16.13.99.1762267347 Tuleap Enterprise Edition versions prior to 17.01 Tuleap Enterprise Edition versions prior to 16.13-6 Tuleap Enterprise Edition versions prior to 16.12-9 Description Tuleap is an...
WebSVN search command execution
Added: 06/23/2021 Background WebSVN is a web interface for Subversion repositories. Problem A command injection vulnerability allows remote unauthenticated attackers to execute arbitrary commands by sending a specially crafted search request. Resolution Upgrade to WebSVN 2.6.1 or higher. Referenc...
USVN Arbitrary Code Execution Vulnerability
USVN is a web interface written in PHP for configuring Subversion repositories. An arbitrary code execution vulnerability exists in USVN versions prior to 1.0.10. An attacker can exploit this vulnerability to execute arbitrary code in the commit view...
[SECURITY] Fedora 23 Update: websvn-2.3.3-13.fc23
WebSVN offers a view onto your subversion repositories that's been designed to reflect the Subversion methodology. You can view the log of any file or directory and see a list of all the files changed, added or deleted in any given revision. You can also view the differences between two versions ...
[SECURITY] Fedora 24 Update: websvn-2.3.3-13.fc24
WebSVN offers a view onto your subversion repositories that's been designed to reflect the Subversion methodology. You can view the log of any file or directory and see a list of all the files changed, added or deleted in any given revision. You can also view the differences between two versions ...
WebSVN 2.3.3 Cross Site Scripting
Title: WebSVN - Reflected Cross-Site Scripting Author: Jakub Palaczynski Date: 22. February 2016 CVE: CVE-2016-2511 Affected software: ================== WebSVN 2.3.3 Older versions are probably also vulnerable. Description: ============ WebSVN offers a view onto your subversion repositories that...
websvn -- reflected cross-site scripting
Sebastien Delafond reports: Jakub Palaczynski discovered that websvn, a web viewer for Subversion repositories, does not correctly sanitize user-supplied input, which allows a remote user to run reflected cross-site scripting attacks...
CentOS 7 : subversion (CESA-2015:1742)
Updated subversion packages that fix multiple security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
[SECURITY] Fedora 21 Update: websvn-2.3.3-8.fc21
WebSVN offers a view onto your subversion repositories that's been designed to reflect the Subversion methodology. You can view the log of any file or directory and see a list of all the files changed, added or deleted in any given revision. You can also view the differences between two versions ...
User Friendly SVN Cross Site Scripting
Exploit Title : User friendly svnweb based interface reflected xss vulnerability Author : Manish Kishan Tanwar Vendor : http://www.usvn.info/ version affected: below 1.0.7 Date : 21/06/2014 Discovered @ : INDISHELL Lab Love to : zero cool,Team indishell,Hardeep Singh,jagriti email :...
CentOS Update for mod_dav_svn CESA-2013:0737 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scripttagname:"affected",...