CVE-2010-0132 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-0132 Interim 1 6 2025-04-15T23:41:47Z current 2021-05-30T12:49:58Z 2025-04-15T23:41:47Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-0132 Cross-site scripting (XSS) vulnerability in ViewVC 1.1 before 1.1.5 and 1.0 before 1.0.11, when the regular expression search functionality is enabled, allows remote attackers to inject arbitrary web script or HTML via vectors related to "search_re input," a different vulnerability than CVE-2010-0736. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4VFC66SUY4UZPFZW2AS5ALIE6BAZW4XM/#4VFC66SUY4UZPFZW2AS5ALIE6BAZW4XM E-Mail link for SUSE-SR:2010:009 https://www.suse.com/support/security/rating/ SUSE Security Ratings Cross-site scripting (XSS) vulnerability in ViewVC 1.1 before 1.1.5 and 1.0 before 1.0.11, when the regular expression search functionality is enabled, allows remote attackers to inject arbitrary web script or HTML via vectors related to "search_re input," a different vulnerability than CVE-2010-0736. CVE-2010-0132 low 2.6 AV:N/AC:H/Au:N/C:N/I:P/A:N