Candidate: CVE-2009-3618
PublicDate: 2009-11-10 02:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3618
Description:
 Cross-site scripting (XSS) vulnerability in viewvc.py in ViewVC 1.0 before
 1.0.9 and 1.1 before 1.1.2 allows remote attackers to inject arbitrary web
 script or HTML via the view parameter.  NOTE: some of these details are
 obtained from third party information.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_viewvc:
upstream_viewvc: released (1.0.9)
dapper_viewvc: DNE
hardy_viewvc: ignored (reached end-of-life)
intrepid_viewvc: needed (reached end-of-life)
jaunty_viewvc: ignored (reached end-of-life)
karmic_viewvc: ignored (reached end-of-life)
lucid_viewvc: not-affected (1.0.9-1)
maverick_viewvc: not-affected (1.0.9-1)
natty_viewvc: not-affected (1.0.9-1)
oneiric_viewvc: not-affected (1.0.9-1)
devel_viewvc: not-affected (1.0.9-1)