Lucene search
PRIOn knowledge basePRION:CVE-2023-6710HistoryDec 12, 2023 - 10:15 p.m.
Cross site scripting
2023-12-1222:15:00
PRIOn knowledge base
www.prio-n.com
9
apache
mod_proxy_cluster
flaw
stored cross-site scripting
url
alias parameter
vulnerability
A flaw was found in the mod_proxy_cluster in the Apache server. This issue may allow a malicious user to add a script in the ‘alias’ parameter in the URL to trigger the stored cross-site scripting (XSS) vulnerability. By adding a script on the alias parameter on the URL, it adds a new virtual host and adds the script to the cluster-manager page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| enterprise_linux | eq | 9.0 |
Related
githubexploit
githubexploit
Exploit for Cross-site Scripting in Modcluster Mod Proxy Cluster
2023-12-25 09:50:23
Exploit for Cross-site Scripting in Modcluster Mod Proxy Cluster
2023-12-25 09:40:31
cve
cve
CVE-2023-6710
2023-12-12 22:15:22
packetstorm
packetstorm
Apache mod_proxy_cluster Cross Site Scripting
2024-05-14 00:00:00
cvelist
cvelist
CVE-2023-6710 Mod_cluster/mod_proxy_cluster: stored cross site scripting
2023-12-12 22:01:34
nvd
nvd
CVE-2023-6710
2023-12-12 22:15:22
exploitdb
exploitdb
Apache mod_proxy_cluster - Stored XSS
2024-05-13 00:00:00
zdt
zdt
Apache mod_proxy_cluster - Stored XSS Exploit
2024-05-13 00:00:00
redhatcve
redhatcve
CVE-2023-6710
2023-12-12 06:27:11
nessus
nessus
RHEL 9 : mod_jk and mod_proxy_cluster (RHSA-2024:2387)
2024-04-30 00:00:00
Oracle Linux 9 : mod_jk / and / mod_proxy_cluster (ELSA-2024-2387)
2024-05-06 00:00:00
almalinux
almalinux
Moderate: mod_jk and mod_proxy_cluster security update
2024-04-30 00:00:00
oraclelinux
oraclelinux
mod_jk and mod_proxy_cluster security update
2024-05-02 00:00:00
osv
osv
Moderate: mod_jk and mod_proxy_cluster security update
2024-04-30 00:00:00
redhat
redhat
ibm
ibm
Security Bulletin: Multiple vulnerabilites in IBM Rational Build Forge.
2024-04-02 13:12:49