Oval Definition:
oval:org.opensuse.security:def:20100736
Revision Date
:
2015-11-16
Version
:
1
Title
:
CVE-2010-0736
Description
:
Cross-site scripting (XSS) vulnerability in the view_queryform function in lib/viewvc.py in ViewVC before 1.0.10, and 1.1.x before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via "user-provided input."
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2010-0736
Platform(s)
:
openSUSE 11.0
openSUSE 11.1
openSUSE 11.2
Product(s)
:
Definition Synopsis
Release Information
suse110 is installed
AND
viewvc less than 1.0.10-0.1
OR
Package Information
suse111 is installed
AND
viewvc less than 1.0.10-0.1.2
OR
Package Information
suse112 is installed
AND
viewvc less than 1.1.4-1.1.1
BACK