Vulnerabilities > Apache > Archiva > 1.3.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-06-02 | CVE-2011-1077 | Cross-Site Scripting vulnerability in Apache Archiva Multiple cross-site scripting (XSS) vulnerabilities in Apache Archiva 1.0 through 1.2.2, and 1.3.x before 1.3.5, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
2011-06-02 | CVE-2011-1026 | Cross-Site Request Forgery (CSRF) vulnerability in Apache Archiva Multiple cross-site request forgery (CSRF) vulnerabilities in Apache Archiva 1.0 through 1.2.2, and 1.3.x before 1.3.5, allow remote attackers to hijack the authentication of administrators. | 6.8 |