ViewVC before 1.1.3 composes the root listing view without using the authorizer for each root, which might allow remote attackers to discover private root names by reading this view.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-10-03T16:21:11
Updated: 2022-10-03T16:21:11
Reserved: 2022-10-03T00:00:00
Link: CVE-2010-0004
JSON object: View
NVD Information
Status : Modified
Published: 2010-01-29T18:30:00.997
Modified: 2023-11-07T02:04:58.143
Link: CVE-2010-0004
JSON object: View
Redhat Information
No data.
CWE