CVE-2013-2187
Cross-site scripting (XSS) vulnerability in Apache Archiva 1.2 through 1.2.2 and 1.3 before 1.3.8 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, related to the home page.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0114 (1.1%)
Percentile: 78.5%
EPSS: 2026-05-06
Affects
apache:archivaTechnical description
Cross-site scripting (XSS) vulnerability in Apache Archiva 1.2 through 1.2.2 and 1.3 before 1.3.8 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, related to the home page.
Published: 4/22/2014, 2:23:34 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://archiva.apache.org/security.html
- http://www.securityfocus.com/archive/1/531884/100/0/threaded
- http://www.securityfocus.com/bid/66991
- http://www.securitytracker.com/id/1030130
- http://archiva.apache.org/security.html
- http://www.securityfocus.com/archive/1/531884/100/0/threaded
- http://www.securityfocus.com/bid/66991
- http://www.securitytracker.com/id/1030130