CVE-2011-2711 in cgitinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in the print_fileinfo function in ui-diff.c in cgit 0.9.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the filename associated with the rename hint.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

11/07/2011

Divulgazione

02/08/2011

Moderazione

accettato

Voce

VDB-58155

CPE

pronto

CWE

CWE-79 (confermato)

CVSS

3.5 (NVD)

EPSS

0.01882

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2711
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2711
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2711/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!