Back to search
CVE-2011-4923
Published: Feb 18, 2012
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter in a view action to index.cgi, related to the log file viewer, a different vulnerability than CVE-2011-3361.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20111027 CVE Request: Security issue in backuppc
mailing-list
x_refsource_MLIST
backuppc-num-xss(71030)
vdb-entry
x_refsource_XF
[oss-security] 20120104 Re: CVE Request: Security issue in backuppc
mailing-list
x_refsource_MLIST
USN-1249-1
vendor-advisory
x_refsource_UBUNTU
50406
vdb-entry
x_refsource_BID
46615
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now