NVD

Id
11481  
Name
CVE-2011-5221  
Description
Cross-site scripting (XSS) vulnerability in the getLog function in svnlook.php in WebSVN before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the path parameter to (1) comp.php, (2) diff.php, or (3) revision.php.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2012-10-25  
Modified Date
2013-02-13  
Seq
2011-5221  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
63012 11481 CVE-2011-5221 http://st2tea.blogspot.com/2011/12/websvn-cross-site-scripting.html  View
63013 11481 CVE-2011-5221 http://websvn.tigris.org/issues/show_bug.cgi?id=275  View
63014 11481 CVE-2011-5221 51109  View
63015 11481 CVE-2011-5221 1026438  View
63016 11481 CVE-2011-5221 websvn-path-xss(71888)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
39240 JVNDB-2010-005025 WebSVN の svnlook.php 内の getLog 関数におけるクロスサイトスクリプティングの脆弱性 WebSVN の svnlook.php 内の getLog 関数には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2011-5221 53128 CVE-2011-5221 11481 4.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-005025.html 2010-04-20 2012-10-29 View