CVE-2011-0462

2022-10-0316:15:19

mitre

www.cve.org

cve-2011-0462

cross-site scripting

suse opensuse build service

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.7%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the login page in the webui component in SUSE openSUSE Build Service (OBS) before 2.1.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

news.opensuse.org/2011/03/02/build-service-team-releases-new-versions-fixing-security-problems/

bugzilla.novell.com/show_bug.cgi?id=669909