FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

devel/viewvc-devel is vulnerable to cross-site scripting

Affected packages
		py37-viewvc-devel	<	1.3.0.20230104
		py38-viewvc-devel	<	1.3.0.20230104
		py39-viewvc-devel	<	1.3.0.20230104

Details

VuXML ID	541696ed-8d12-11ed-af80-ecf4bbc0bda0
Discovery	2023-01-04
Entry	2023-01-05

C. Michael Pilato reports:

security fix: escape revision view copy paths (#311) [CVE-2023-22464]

[source]

security fix: escape revision view changed paths (#311) [CVE-2023-22456]

[source]

References

CVE Name	CVE-2023-22456
CVE Name	CVE-2023-22464
URL	https://nvd.nist.gov/vuln/detail/CVE-2023-22456
URL	https://nvd.nist.gov/vuln/detail/CVE-2023-22464

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.