CVE-2012-3356

The remote SVN views functionality (lib/vclib/svn/svn_ra.py) in ViewVC before 1.1.15 does not properly perform authorization, which allows remote attackers to bypass intended access restrictions via unspecified vectors.

Date published : 2012-07-22

http://www.securityfocus.com/bid/54197

http://viewvc.tigris.org/issues/show_bug.cgi?id=353