exploitDog

GHSA-c267-35j7-mgc7

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

ViewVC before 1.0.5 includes "all-forbidden" files within search results that list CVS or Subversion (SVN) commits, which allows remote attackers to obtain sensitive information.

ViewVC before 1.0.5 includes "all-forbidden" files within search results that list CVS or Subversion (SVN) commits, which allows remote attackers to obtain sensitive information.

Ссылки

EPSS

Процентиль: 72%

0.00718

Низкий

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2008-1290

ubuntu

больше 17 лет назад

ViewVC before 1.0.5 includes "all-forbidden" files within search results that list CVS or Subversion (SVN) commits, which allows remote attackers to obtain sensitive information.

CVE-2008-1290

nvd

больше 17 лет назад

ViewVC before 1.0.5 includes "all-forbidden" files within search results that list CVS or Subversion (SVN) commits, which allows remote attackers to obtain sensitive information.

CVE-2008-1290

debian

больше 17 лет назад

ViewVC before 1.0.5 includes "all-forbidden" files within search resul ...

EPSS

Процентиль: 72%

0.00718

Низкий

CVE ID

Дефекты

CWE-200