Unrated severityNVD Advisory· Published Feb 18, 2012· Updated Apr 29, 2026
CVE-2011-3361
CVE-2011-3361
Description
Cross-site scripting (XSS) vulnerability in CGI/Browse.pm in BackupPC 3.2.0 and possibly other versions before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the num parameter in a browse action to index.cgi.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- sourceforge.net/mailarchive/message.phpnvdExploit
- www.htbridge.ch/advisory/multiple_xss_vulnerabilities_in_backuppc.htmlnvdExploit
- secunia.com/advisories/44259nvdVendor Advisory
- secunia.com/advisories/46621nvdVendor Advisory
- backuppc.cvs.sourceforge.net/viewvc/backuppc/BackupPC/ChangeLognvd
- backuppc.cvs.sourceforge.net/viewvc/backuppc/BackupPC/lib/BackupPC/CGI/Browse.pmnvd
- ubuntu.com/usn/usn-1249-1nvd
- www.openwall.com/lists/oss-security/2011/09/13/3nvd
- www.openwall.com/lists/oss-security/2011/09/14/7nvd
- www.securityfocus.com/bid/50406nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/71030nvd
News mentions
0No linked articles in our index yet.