Description
Cross-site scripting (XSS) vulnerability in WebSVN 2.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the path parameter to log.php.
Published: 2016-04-07
Score: 6.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-428-1 websvn security update
Debian DSA Debian DSA DSA-3490-1 websvn security update
EUVD EUVD EUVD-2016-3592 Cross-site scripting (XSS) vulnerability in WebSVN 2.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the path parameter to log.php.
History

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00544}

 epss

{'score': 0.00388}

Subscriptions

Debian Debian Linux
Websvn Websvn
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T23:32:20.124Z

Reserved: 2016-02-19T00:00:00.000Z

Link: CVE-2016-2511

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2016-04-07T21:59:03.637

Modified: 2025-04-12T10:46:40.837

Link: CVE-2016-2511

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses