Vulnerability Details CVE-2004-1062
Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.9%
CVSS Severity
CVSS v2 Score 4.3
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html
- http://security.gentoo.org/glsa/glsa-200412-26.xml
- http://www.mikx.de/index.php?p=6
- http://www.novell.com/linux/security/advisories/2005_01_sr.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18718
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html
- http://security.gentoo.org/glsa/glsa-200412-26.xml
- http://www.mikx.de/index.php?p=6
- http://www.novell.com/linux/security/advisories/2005_01_sr.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18718