CVE-2011-0728
29.03.2011, 18:55
Cross-site scripting (XSS) vulnerability in templatefunctions.py in Loggerhead before 1.18.1 allows remote authenticated users to inject arbitrary web script or HTML via a filename, which is not properly handled in a revision view.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
michael_hudson-doyle | loggerhead | 𝑥 ≤ 1.18 |
michael_hudson-doyle | loggerhead | 1.6 |
michael_hudson-doyle | loggerhead | 1.6.1 |
michael_hudson-doyle | loggerhead | 1.10 |
michael_hudson-doyle | loggerhead | 1.17 |
𝑥
= Vulnerable software versions

Debian Releases

Ubuntu Releases
References