Filtered by vendor Freebsd Subscriptions
Filtered by product Cvsweb Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-1000998 1 Freebsd 1 Cvsweb 2024-11-21 N/A
FreeBSD CVSweb version 2.x contains a Cross Site Scripting (XSS) vulnerability in all pages that can result in limited impact--CVSweb is anonymous & read-only. It might impact other sites on same domain. This attack appears to be exploitable via victim must load specially crafted url. This vulnerability appears to have been fixed in 3.x.