Get started for free to scan for vulnerabilites.
Download Mageni to scan for vulnerabilities. It is free to get started and can be installed in Windows, macOS and Linux.
viewcvs in ViewCVS 0.9.2 allows remote attackers to set the Content-Type header to arbitrary values via the content-type parameter, which can be leveraged for cross-site scripting (XSS) and other attacks, as demonstrated using (1) "text/html", or (2) "image/jpeg" with an image that is rendered as HTML by Internet Explorer, a different vulnerability than CVE-2004-1062. NOTE: it was later reported that 0.9.4 is also affected..
- Base Score
- Exploit Score
- Access Vector
- Access Complexity
- Authentication Required
- Impact Score
- Confidentiality Impact
- Availability Impact
- Integrity Impact
Know your vulnerabilities for free. Start using Mageni today.
Mageni can help you to find, assess and manage your vulnerabilities.Get Started for Free