0.002 Low
EPSS
Percentile
51.8%
kallithea is vulnerable to cross-site scripting (XSS) attacks. The does not properly sanitize multiple strings, allowing a malicious user to inject and execute arbitrary webscript.
www.openwall.com/lists/oss-security/2015/04/14/12
www.securityfocus.com/bid/74184
kallithea-scm.org/repos/kallithea/changeset/a8f2986afc18c9221bf99f88b06e60ab83c86c55
kallithea-scm.org/security/cve-2015-1864.html
kallithea-scm.org/security/cve-2015-1864.patch