Lucene search
Oliver KarowEDB-ID:27096HistoryJan 16, 2006 - 12:00 a.m.
Apache Geronimo 1.0 - Error Page Cross-Site Scripting
2006-01-1600:00:00
Oliver Karow
www.exploit-db.com
18
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/16260/info
Apache Geronimo is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input.
A successful exploit could allow an attacker to compromise the application, access or modify data, or steal cookie-based authentication credentials. The attacker could also exploit this issue to control how the site is rendered to the user; other attacks are also possible.
http://www.example.com/script-that-dont-has-to-exist.jsp?foobar="/><script>alert(document.cookie)</script> Related
nvd
nvd
CVE-2006-0254
2006-01-18 01:51:00
CVE-2006-7196
2007-05-10 00:19:00
exploitdb
exploitdb
nessus
nessus
Apache Tomcat / Geronimo Sample Script cal2.jsp time Parameter XSS
2006-01-18 00:00:00
RHEL 4 : Satellite Server (RHSA-2008:0630)
2010-01-10 00:00:00
RHEL 4 : Satellite Server (RHSA-2008:0261)
2010-01-10 00:00:00
osv
osv
Apache Geronimo console 1.0 vulnerable to cross-site scripting
2022-05-01 06:38:20
Cross-site scripting in Apache Tomcat
2022-05-01 07:45:38
prion
prion
Cross site scripting
2006-01-18 01:51:00
github
github
Apache Geronimo console 1.0 vulnerable to cross-site scripting
2022-05-01 06:38:20
Cross-site scripting in Apache Tomcat
2022-05-01 07:45:38
cvelist
cvelist
CVE-2006-0254
2006-01-18 02:00:00
CVE-2006-7196
2007-05-09 22:00:00
cve
cve
CVE-2006-0254
2006-01-18 02:00:00
CVE-2006-7196
2007-05-10 00:19:00
ubuntucve
ubuntucve
CVE-2006-7196
2007-05-10 00:00:00
redhat
redhat
(RHSA-2006:0161) RHAPS security and enhancement update
2006-03-07 00:00:00
(RHSA-2008:0630) Low: Red Hat Network Satellite Server security update
2008-08-13 00:00:00
(RHSA-2008:0261) Moderate: Red Hat Network Satellite Server security update
2008-05-20 00:00:00
