Cross-site scripting (XSS) vulnerability in Apache Archiva 1.3.9 and earlier allows remote authenticated administrators to inject arbitrary web script or HTML via the connector.sourceRepoId parameter to admin/addProxyConnector_commit.action.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2016-07-28T16:00:00

Updated: 2024-08-06T00:46:40.202Z

Reserved: 2016-05-24T00:00:00

Link: CVE-2016-5005

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-07-28T16:59:01.380

Modified: 2024-11-21T02:53:25.717

Link: CVE-2016-5005

cve-icon Redhat

No data.