4 matches found
CVE-2009-5048
Cookie Dump Servlet stored XSS vulnerability in jetty though 6.1.20...
CVE-2009-5048
creationtimestamp| type| source ---|---|--- 2019-11-06 22:28:19+00:00| seen| https://t.me/cibsecurity/7939...
CVE-2009-5048
Cookie Dump Servlet stored XSS vulnerability in jetty though 6.1.20...
CVE-2009-5048
CVE-2009-5048 is a stored XSS in the Jetty project, specifically the Cookie Dump Servlet, affecting Jetty 6.1.x up to 6.1.20. The root cause is improper validation of user-supplied input in the Cookie Dump Servlet, enabling an attacker to inject script that could access cookie-based credentials. ...