2 matches found
Session Hijack
The Play Framework is vulnerable to a session magement vulnerablity. It is possible by a 3rd-party to acquire session information for another in-progress request for any application that uses the session in the processing of a 500 error page...
Logging event information is not HTML encoded in 500 error page
The Confluence 500 error page lists logging events generated during the request the produced the 500 error page. The strings rendered from this event are not HTML encoded, leaving open a chance for an attacker to exploit this via XSS. I haven't yet investigated to see whether this is actually...