Lucene search

XSS in JSON: Old-School Attacks for Modern Applications

🗓️ 04 May 2022 15:03:48Reported by Julius CallahanType

XSS in JSON: Old-School Attacks for Modern Applications. Covers injection vulnerabilities, persistent XSS, stored XSS, and its impact on modern web applications

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Trend Micro Simply Security	CVE-2022-22965: Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware	8 Apr 202200:00	–	trendmicroblog
Trend Micro Simply Security	Analyzing Attempts to Exploit the Spring4Shell Vulnerability CVE-2022-22965 to Deploy Cryptocurrency Miners	20 Apr 202200:00	–	trendmicroblog
Trend Micro Simply Security	Spring4Shell Vulnerability CVE-2022-22965 Exploited to Deploy Cryptocurrency Miners	20 Apr 202200:00	–	trendmicroblog
IBM Security Bulletins	Security Bulletin: IBM Maximo For Civil infrastructure is vulnerable to a remote code execution in Spring Framework (CVE-2022-22965)	11 Apr 202215:15	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Connect:Direct Web Services is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)	7 Jun 202205:50	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Spectrum Conductor is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)	20 Jun 202202:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Robotic Process Automation with Automation Anywhere is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)	19 May 202216:14	–	ibm
IBM Security Bulletins	Security Bulletin: Operations Dashboard in Cloud Pak for Integration is affected by Spring4Shell CVE-2022-22965	27 Apr 202214:59	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Test Control Panel component in Rational Test Virtualization Server and Rational Test Workbench is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)	16 Jun 202217:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Control Center is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)	25 May 202222:33	–	ibm

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 May 2022 15:48Current

9.1High risk

Vulners AI Score9.1

EPSS0.94464