CVE-2007-3056 | HackTesting

Cross-site scripting (XSS) vulnerability in filedetails.php in WebSVN 2.0rc4, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the path parameter.

References

http://bugs.gentoo.org/show_bug.cgi?id=180879

http://www.securityfocus.com/bid/24310

http://osvdb.org/36409

http://websvn.tigris.org/servlets/ReadMsg?list=dev&msgNo=1328

http://secunia.com/advisories/25532

http://www.attrition.org/pipermail/vim/2007-August/001771.html

http://bugs.gentoo.org/show_bug.cgi?id=180879

https://exchange.xforce.ibmcloud.com/vulnerabilities/34726

http://www.nabble.com/CVE-2007-3056-tf4246678.html

http://securitytracker.com/id?1018601