Reviewboard

reviewboard

Vendor: Reviewboard • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-4796 1Reviewboard 1Reviewboard Nov 21, 2024 Dec 27, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 ReviewBoard 1.6.17 allows code execution by attaching PHP scripts to review request
CVE-2013-4411 2Fedoraproject Reviewboard 2Fedora Reviewboard Nov 21, 2024 Dec 3, 2019 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Review Board: URL processing gives unauthorized users access to review lists
CVE-2013-4410 2Fedoraproject Reviewboard 2Fedora Reviewboard Nov 21, 2024 Dec 2, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 ReviewBoard: has an access-control problem in REST API
CVE-2014-3994 1Reviewboard 2Djblets Reviewboard May 6, 2026 Jun 16, 2014 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django, as used in Review Board, allows remote attackers to inject arbitrary web script or H...Show more Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django, as used in Review Board, allows remote attackers to inject arbitrary web script or HTML via a JSON object, as demonstrated by the name field when changing a user name.Show less