Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2010-2087
HistoryMay 27, 2010 - 6:32 p.m.

CVE-2010-2087

2010-05-2718:32:00
mitre
www.cve.org
4
cve-2010-2087
cross-site scripting
expression language

AI Score

5.9

Confidence

High

EPSS

0.002

Percentile

56.8%

JSON

Oracle Mojarra 1.2_14 and 2.0.2, as used in IBM WebSphere Application Server, Caucho Resin, and other applications, does not properly handle an unencrypted view state, which allows remote attackers to conduct cross-site scripting (XSS) attacks or execute arbitrary Expression Language (EL) statements via vectors that involve modifying the serialized view object.

Related

debiancve 1
nvd 1
seebug 1
prion 1
cve 1
debiancve
debiancve
CVE-2010-2087
2010-05-27 19:00:01
nvd
nvd
CVE-2010-2087
2010-05-27 19:00:01
seebug
seebug
Oracle Mojarra ViewState远程跨站脚本漏洞
2010-05-31 00:00:00
prion
prion
Cross site scripting
2010-05-27 19:00:00
cve
cve
CVE-2010-2087
2010-05-27 19:00:01

AI Score

5.9

Confidence

High

EPSS

0.002

Percentile

56.8%

JSON
Related for CVELIST:CVE-2010-2087
debiancve1nvd1seebug1prion1cve1