CVE-2013-2187: XSS
First published: Tue Apr 22 2014(Updated: )
Cross-site scripting (XSS) vulnerability in Apache Archiva 1.2 through 1.2.2 and 1.3 before 1.3.8 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, related to the home page.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apache Archiva | =1.2 | |
| Apache Archiva | =1.2.1 | |
| Apache Archiva | =1.2.2 | |
| Apache Archiva | =1.3 | |
| Apache Archiva | =1.3.1 | |
| Apache Archiva | =1.3.2 | |
| Apache Archiva | =1.3.3 | |
| Apache Archiva | =1.3.4 | |
| Apache Archiva | =1.3.5 | |
| Apache Archiva | =1.3.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/remedy
- agent/weakness
- agent/author
- agent/first-publish-date
- agent/description
- agent/softwarecombine
- agent/event
- agent/tags
- agent/source
- vendor/apache
- canonical/apache archiva
- version/apache archiva/1.2
- version/apache archiva/1.2.1
- version/apache archiva/1.2.2
- version/apache archiva/1.3
- version/apache archiva/1.3.1
- version/apache archiva/1.3.2
- version/apache archiva/1.3.3
- version/apache archiva/1.3.4
- version/apache archiva/1.3.5
- version/apache archiva/1.3.6