CVE-2010-3906

Опубликовано: 17 дек. 2010

Источник: debian

EPSS Средний

Описание

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
git-core	removed			package
git-core	fixed	1.5.6.5-3+lenny3.3	lenny	package
git	fixed	1:1.7.2.3-2.2		package

EPSS

Процентиль: 94%

0.14772

Средний

Связанные уязвимости

CVE-2010-3906

ubuntu

больше 14 лет назад

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

CVE-2010-3906

redhat

больше 14 лет назад

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

CVE-2010-3906

nvd

больше 14 лет назад

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

GHSA-3mrf-mhch-542p

github

около 3 лет назад

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

ELSA-2010-1003

oracle-oval

больше 14 лет назад

ELSA-2010-1003: git security update (MODERATE)

EPSS

Процентиль: 94%

0.14772

Средний