Lucene search
RootSSV:20598HistoryJun 02, 2011 - 12:00 a.m.
Apache Archiva跨站脚本和HTML注入漏洞
2011-06-0200:00:00
Root
www.seebug.org
11
0.002 Low
EPSS
Percentile
55.2%
Bugtraq ID: 48011
CVE ID:CVE-2011-1077
Apache Archiva是一款管理一个和多个远程存储的软件。
Apache Archiva存在多个存储型和反射型跨站脚本问题,在请求参数中或发送表单中提交包含恶意代码的JavaScript,诱使用户处理可导致恶意脚本在目标用户浏览器上执行,可获得敏感信息或劫持用户会话
Apache Archiva 1.3.4
Apache Archiva 1.3.3
Apache Archiva 1.3.2
Apache Archiva 1.3.1
Apache Archiva 1.3
Apache Archiva 1.3.5已经修复此漏洞,建议用户下载使用:
http://archiva.apache.org/index.html
Related
prion
prion
Cross site scripting
2011-06-02 20:55:00
securityvulns
securityvulns
[SECURITY] CVE-2011-1077: Apache Archiva Multiple XSS vulnerability
2011-05-30 00:00:00
[CVE-2011-1077] Apache Archiva Multiple XSS vulnerabilities
2011-06-02 00:00:00
[CVE-2011-1026] Apache Archiva Multiple CSRF vulnerabilities
2011-06-02 00:00:00
cvelist
cvelist
CVE-2011-1077
2011-06-02 20:00:00
cve
cve
CVE-2011-1077
2011-06-02 20:55:00
nessus
nessus
Apache Archiva < 1.3.5 Multiple Vulnerabilities
2011-06-05 00:00:00
packetstorm
packetstorm
Apache Archiva 1.3.4 Cross Site Scripting
2011-05-30 00:00:00
Apache Archiva 1.3.4 Cross Site Request Forgery
2011-05-30 00:00:00
openvas
openvas
Apache Archiva Multiple Vulnerabilities
2011-06-02 00:00:00