CVE-2011-1077

Currently unrated

Key Information:

Vendor: Apache
Status: Archiva
Vendor: CVE Published:; 2 June 2011

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Apache Archiva 1.0 through 1.2.2, and 1.3.x before 1.3.5, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

http://www.securityfocus.com/archive/1/518167/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/44693

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/67672

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jun 2, 2011
Vulnerability Reserved
Feb 24, 2011