Lucene search
MitreCVELIST:CVE-2016-4003HistoryApr 12, 2016 - 4:00 p.m.
CVE-2016-4003
2016-04-1216:00:00
mitre
www.cve.org
6
Cross-site scripting (XSS) vulnerability in the URLDecoder function in JRE before 1.8, as used in Apache Struts 2.x before 2.3.28, when using a single byte page encoding, allows remote attackers to inject arbitrary web script or HTML via multi-byte characters in a url-encoded parameter.
Related
ibm
ibm
ubuntucve
ubuntucve
CVE-2016-4003
2016-04-12 00:00:00
nvd
nvd
CVE-2016-4003
2016-04-12 16:59:04
CVE-2016-0759
2017-10-31 14:29:00
cve
cve
CVE-2016-4003
2016-04-12 16:59:04
CVE-2016-0759
2017-10-31 14:29:00
github
github
Cross-site Scripting in Apache Struts
2022-05-14 01:57:01
prion
prion
Cross site scripting
2016-04-12 16:59:00
Design/Logic Flaw
2017-10-31 14:29:00
osv
osv
Cross-site Scripting in Apache Struts
2022-05-14 01:57:01
openvas
openvas
Apache Struts Security Update (S2-028, S2-030, S2-034)
2016-06-06 00:00:00
nessus
nessus
