CVE-2010-3906

Published: Dec 17, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

43457

third-party-advisory

x_refsource_SECUNIA

42645

third-party-advisory

x_refsource_SECUNIA

FEDORA-2010-18981

vendor-advisory

x_refsource_FEDORA

42731

third-party-advisory

x_refsource_SECUNIA

ADV-2010-3323

vdb-entry

x_refsource_VUPEN

RHSA-2010:1003

vendor-advisory

x_refsource_REDHAT

ADV-2011-0010

vdb-entry

x_refsource_VUPEN

42743

third-party-advisory

x_refsource_SECUNIA

15744

exploit

x_refsource_EXPLOIT-DB

SUSE-SR:2011:004

vendor-advisory

x_refsource_SUSE

MDVSA-2010:256

vendor-advisory

x_refsource_MANDRIVA

1024905

vdb-entry

x_refsource_SECTRACK

45439

vdb-entry

x_refsource_BID

ADV-2011-0464

vdb-entry

x_refsource_VUPEN

FEDORA-2010-18973

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2010-3906

Description

Affected Products

References