CVE-2016-1236

Priority
Description
Multiple cross-site scripting (XSS) vulnerabilities in (1) revision.php,
(2) log.php, (3) listing.php, and (4) comp.php in WebSVN allow
context-dependent attackers to inject arbitrary web script or HTML via the
name of a (a) file or (b) directory in a repository.
Notes
Package
Upstream:needed
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [2.3.3-1.1+deb7u3build0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):DNE
More Information

Updated: 2020-09-10 04:59:44 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)