CVE-2011-0462
openSUSE Build Service < 2.1.6 - Cross-Site Scripting in WebUI Login Page
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in the login page in the webui component in SUSE openSUSE Build Service (OBS) before 2.1.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References (2)
Core 2
Core References
Various Sources x_refsource_confirm
http://news.opensuse.org/2011/03/02/build-service-team-releases-new-versions-fixing-security-problems/
Issue Tracking x_refsource_confirm
https://bugzilla.novell.com/show_bug.cgi?id=669909
Scores
EPSS
0.0010
EPSS Percentile
26.3%
Details
CWE
CWE-79
Status
published
Products (37)
novell/opensuse_build_service
1.0
novell/opensuse_build_service
1.5
novell/opensuse_build_service
1.6
novell/opensuse_build_service
1.7
novell/opensuse_build_service
1.7.0
novell/opensuse_build_service
1.7.2
novell/opensuse_build_service
1.7.3
novell/opensuse_build_service
1.7.4
novell/opensuse_build_service
1.7.5
novell/opensuse_build_service
1.7.6
... and 27 more
Published
Apr 10, 2011
Tracked Since
Feb 18, 2026