CVE-2011-3361

Backuppc - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in CGI/Browse.pm in BackupPC 3.2.0 and possibly other versions before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the num parameter in a browse action to index.cgi.

References (11)

Scores

EPSS 0.0061
EPSS Percentile 69.4%

Classification

CWE
CWE-79
Status published

Affected Products (2)

backuppc/backuppc
n/a/n/a

Timeline

Published Feb 18, 2012
Tracked Since Feb 18, 2026