Lucene search
GoogleOSV:DSA-3572-1HistoryMay 09, 2016 - 12:00 a.m.
websvn - security update
2016-05-0900:00:00
Google
osv.dev
4
0.002 Low
EPSS
Percentile
56.6%
Nitin Venkatesh discovered that websvn, a web viewer for Subversion
repositories, is susceptible to cross-site scripting attacks via
specially crafted file and directory names in repositories.
For the stable distribution (jessie), this problem has been fixed in
version 2.3.3-1.2+deb8u2.
We recommend that you upgrade your websvn packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| websvn | eq | 2.3.3-1.2+deb8u1 | |
| websvn | eq | 2.3.3-1.2 |
References
Related
openvas
openvas
Fedora Update for websvn FEDORA-2016-cafcf15357
2016-06-08 00:00:00
Debian: Security Advisory (DLA-462-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3572-1)
2016-05-08 00:00:00
debian
debian
[SECURITY] [DSA 3572-1] websvn security update
2016-05-09 18:49:59
[SECURITY] [DSA 3572-1] websvn security update
2016-05-09 18:49:59
[SECURITY] [DLA 462-1] websvn security update
2016-05-09 19:03:00
fedora
fedora
[SECURITY] Fedora 22 Update: websvn-2.3.3-13.fc22
2016-05-24 01:23:12
[SECURITY] Fedora 24 Update: websvn-2.3.3-13.fc24
2016-05-23 20:25:40
[SECURITY] Fedora 23 Update: websvn-2.3.3-13.fc23
2016-05-24 01:40:05
nessus
nessus
Fedora 23 : websvn (2016-0cb7475aa6)
2016-07-14 00:00:00
Debian DLA-462-1 : websvn security update
2016-05-11 00:00:00
Fedora 22 : websvn (2016-cafcf15357)
2016-07-14 00:00:00
cvelist
cvelist
CVE-2016-1236
2016-05-11 21:00:00
cve
cve
CVE-2016-1236
2016-05-11 21:59:00
prion
prion
Cross site scripting
2016-05-11 21:59:00
nvd
nvd
CVE-2016-1236
2016-05-11 21:59:00
osv
osv
websvn - security update
2016-05-09 00:00:00
ubuntucve
ubuntucve
CVE-2016-1236
2016-05-11 00:00:00
archlinux
archlinux
websvn: cross-site scripting
2016-08-11 00:00:00