CVE-2004-1062

Опубликовано: 28 дек. 2004

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.

Ссылки

http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html
Vendor Advisory
http://security.gentoo.org/glsa/glsa-200412-26.xml
Patch
Vendor Advisory
http://www.mikx.de/index.php?p=6
Vendor Advisory
http://www.novell.com/linux/security/advisories/2005_01_sr.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/18718
http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html
Vendor Advisory
http://security.gentoo.org/glsa/glsa-200412-26.xml
Patch
Vendor Advisory
http://www.mikx.de/index.php?p=6
Vendor Advisory
http://www.novell.com/linux/security/advisories/2005_01_sr.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/18718

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*

EPSS

Процентиль: 67%

0.00547

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2004-1062

ubuntu

больше 20 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.

CVE-2004-1062

debian

больше 20 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 a ...

GHSA-4qgm-jgjc-wjvj

github

около 3 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.

EPSS

Процентиль: 67%

0.00547

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other