Lucene search

PRIOn knowledge basePRION:CVE-2016-2511

HistoryApr 07, 2016 - 9:59 p.m.

Cross site scripting

2016-04-0721:59:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.5%

JSON

Cross-site scripting (XSS) vulnerability in WebSVN 2.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the path parameter to log.php.

CPENameOperatorVersion
debian_linuxeq8.0
debian_linuxeq7.0
websvnle2.3.3

Name	Operator	Version
debian_linux	eq	8.0
debian_linux	eq	7.0
websvn	le	2.3.3

References

packetstormsecurity.com/files/135886/WebSVN-2.3.3-Cross-Site-Scripting.html

seclists.org/fulldisclosure/2016/Feb/99

www.debian.org/security/2016/dsa-3490

lists.fedoraproject.org/pipermail/package-announce/2016-March/179168.html