Cross-site scripting (XSS) vulnerability in the view_queryform function in lib/viewvc.py in ViewVC before 1.0.10, and 1.1.x before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via "user-provided input."
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-10-03T16:21:10
Updated: 2022-10-03T16:21:10
Reserved: 2022-10-03T00:00:00
Link: CVE-2010-0736
JSON object: View
NVD Information
Status : Analyzed
Published: 2010-03-19T19:30:00.610
Modified: 2010-03-22T04:00:00.000
Link: CVE-2010-0736
JSON object: View
Redhat Information
No data.
CWE