Vulnerabilities

CVE-2011-2711

by Fred · 02/08/2011

Cross-site scripting (XSS) vulnerability in the print_fileinfo function in ui-diff.c in cgit 0.9.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the filename associated with the rename hint.

Date published : 2011-08-02

http://www.securityfocus.com/bid/48866

http://hjemli.net/git/cgit/commit/?h=stable&id=bebe89d7c11a92bf206bf6e528c51ffa8ecbc0d5

Similar

Tags: Cybersecurity Alert