14 matches found
CVE-2026-46454 Apache Camel: Camel-Cometd: Inbound Bayeux message headers are mapped into the Exchange without a HeaderFilterStrategy, allowing unauthenticated clients to inject Camel control headers
Improper Input Validation vulnerability in Apache Camel Cometd Component. The camel-cometd component maps inbound Bayeux CometD message headers into the Camel Exchange without applying a HeaderFilterStrategy. CometdBinding.populateExchangeFromMessage copies the entire ext.CamelHeaders map supplie...
CVE-2026-46454
The CVE-2026-46454 entry describes an improper input validation vulnerability in Apache Camel’s CometD binding. The issue arises because inbound Bayeux/CometD headers are mapped into the Camel Exchange without a HeaderFilterStrategy, copying the entire ext.CamelHeaders map onto the message. This ...
CVE-2026-46454
Improper Input Validation vulnerability in Apache Camel Cometd Component. The camel-cometd component maps inbound Bayeux CometD message headers into the Camel Exchange without applying a HeaderFilterStrategy. CometdBinding.populateExchangeFromMessage copies the entire ext.CamelHeaders map supplie...
EUVD-2013-6298
Malware in sbrugna...
Faye Trust Management Issue Vulnerability
Faye is a set of open source based on the Bayeux protocol publish-subscribe messaging system . The system is mainly used for publish-subscribe messaging between Web clients . A trust management issue vulnerability exists in versions of Faye prior to 1.4.0, which stems from the program failing to...
CVE-2013-6495
JBossWeb Bayeux has reflected XSS...
Cross site scripting
JBossWeb Bayeux has reflected XSS...
CVE-2013-6495
CVE-2013-6495 concerns JBossWeb Bayeux with a reflected XSS vulnerability. Public details in the provided documents identify the flaw as a reflected XSS issue. NVD indicates CVSS2 base score 4.3 (MEDIUM) and CVSS3.1 base score 6.1 (MEDIUM). Connected entries list the CVE among Red Hat advisories ...
CVE-2013-6495
JBossWeb Bayeux has reflected XSS...
bayeux-encheres.auction.fr XSS vulnerability
Vulnerable URL:...
Bayeux: Reflected Cross-Site Scripting (XSS)
JBossWeb Bayeux has reflected XSS...
Bayeux: Reflected Cross-Site Scripting (XSS)
JBossWeb Bayeux has reflected XSS...
Bayeux: Reflected Cross-Site Scripting (XSS)
JBossWeb Bayeux has reflected XSS...
Bayeux: Reflected Cross-Site Scripting (XSS)
JBossWeb Bayeux has reflected XSS...