QwikSec

Security Database

CVE

CWE

Training

CVE-2013-2294

Published: Jan 30, 2020

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in ViewGit before 0.0.7 allow remote repository users to inject arbitrary web script or HTML via a (1) tag name to the Shortlog table in templates/shortlog.php or branch name to the (2) Shortlog table in templates/shortlog.php or (3) Heads table in plates/summary.php.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://packetstormsecurity.com/files/120862/ViewGit-0.0.6-Cross-Site-Scripting.html

x_refsource_MISC

http://freecode.com/projects/viewgit/releases/353086

x_refsource_CONFIRM

http://www.exploit-db.com/exploits/24862

x_refsource_MISC

http://seclists.org/fulldisclosure/2013/Mar/174

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.