Cross-site scripting (XSS) vulnerability in the getLog function in svnlook.php in WebSVN before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the path parameter to (1) comp.php, (2) diff.php, or (3) revision.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-10-25T17:00:00
Updated: 2024-08-07T00:30:46.896Z
Reserved: 2012-10-25T00:00:00
Link: CVE-2011-5221
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-10-25T17:55:04.547
Modified: 2024-11-21T01:33:55.650
Link: CVE-2011-5221
Redhat
No data.