← Back

CVE-2011-1952

nvd nist
Published: Jun 6, 2011Modified: Apr 29, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:P
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

common.php in Post Revolution before 0.8.0c-2 allows remote attackers to cause a denial of service (infinite loop) via malformed HTML markup, as demonstrated by an a< sequence.

Affected (12)

Postrev
1 product
Post Revolution
Configuration A
12 vulnerable
Vulnerable SoftwareAffected Versions
Postrev
Post Revolution
Up to 0.8.0c
Post Revolution
Version 0.6.2 beta
Post Revolution
Version 0.6.3 beta
Post Revolution
Version 0.6.4
Post Revolution
Version 0.6.5
Post Revolution
Version 0.6.6
Post Revolution
Version 0.7.0 rc1
Post Revolution
Version 0.7.0 rc2
Post Revolution
Version 0.7.0 rc3
Post Revolution
Version 0.7.0 rc4
Post Revolution
Version 0.8.0 alpha
Post Revolution
Version 0.8.0b

Related CWEs

CWE-399
CWE-399

References (10)

Source: secalert@redhat.com
Exploit
Source: secalert@redhat.com
Patch
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.