CVE-2010-3906

Опубликовано: 17 дек. 2010

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

Описание

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

Релиз	Статус	Примечание
dapper	not-affected	unrelated package
devel	not-affected	1:1.7.2.3-2.2
hardy	not-affected	unrelated package
karmic	DNE
lucid	DNE
maverick	released	1:1.7.1-1.1ubuntu0.1
natty	not-affected	1:1.7.2.3-2.2
oneiric	not-affected	1:1.7.2.3-2.2
upstream	released	1.7.3.4

Показывать по

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	DNE
hardy	ignored	end of life
karmic	released	1:1.6.3.3-2ubuntu0.1
lucid	released	1:1.7.0.4-1ubuntu0.2
maverick	DNE
natty	DNE
oneiric	DNE
upstream	released	1.7.3.4

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2010-3906

redhat

около 15 лет назад

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

CVE-2010-3906

nvd

около 15 лет назад

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

CVE-2010-3906

debian

около 15 лет назад

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier ...

GHSA-3mrf-mhch-542p

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

ELSA-2010-1003

oracle-oval

почти 15 лет назад

ELSA-2010-1003: git security update (MODERATE)

4.3 Medium

CVSS2

CVE-2010-3906

Описание

Пакет git

Пакет git-core

Ссылки на источники

Связанные уязвимости