CVE-2010-0736 | viewvc up to 1.1.3 lib/viewvc.py view_queryform cross site scripting (Nessus ID 45352 / ID 165236)
A vulnerability, which was classified as problematic, has been found in viewvc up to 1.1.3. Affected by this issue is the function view_queryform in the library lib/viewvc.py. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2010-0736. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.