Описание
Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter in a view action to index.cgi, related to the log file viewer, a different vulnerability than CVE-2011-3361.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 3.2.1-1ubuntu2 |
| hardy | released | 3.0.0-4ubuntu1.3 |
| lucid | released | 3.1.0-9ubuntu1.2 |
| maverick | released | 3.1.0-9ubuntu2.2 |
| natty | released | 3.2.0-3ubuntu4.2 |
| oneiric | released | 3.2.1-1ubuntu1.1 |
| upstream | released | 3.2.1 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter in a view action to index.cgi, related to the log file viewer, a different vulnerability than CVE-2011-3361.
Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, ...
Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter in a view action to index.cgi, related to the log file viewer, a different vulnerability than CVE-2011-3361.
EPSS
4.3 Medium
CVSS2