Your submission was sent successfully! Close

CVE-2016-2511

Published: 07 April 2016

Cross-site scripting (XSS) vulnerability in WebSVN 2.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the path parameter to log.php.

Priority

Medium

CVSS 3 base score: 6.1

Status

Package Release Status
websvn
Launchpad, Ubuntu, Debian
Upstream Needed

Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [2.3.3-1.1+deb7u2build0.14.04.1])