3 matches found
CVE-2021-44791
creationtimestamp| type| source ---|---|--- 2022-07-07 22:15:44+00:00| seen| https://t.me/cibsecurity/45773...
CVE-2021-44791 Reflected XSS on certain HTTP endpoints
In Apache Druid 0.22.1 and earlier, certain specially-crafted links result in unescaped URL parameters being sent back in HTML responses. This makes it possible to execute reflected XSS attacks...
CVE-2021-44791
CVE-2021-44791 affects Apache Druid 0.22.1 and earlier. The vulnerability arises when certain specially-crafted links cause unescaped URL parameters to be echoed back in HTML responses, enabling reflected XSS . The impact floor is limited to the types of data altered in the response and user inte...