Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.17 views

EUVD-2022-2207

Malicious code in bioql PyPI...

4.3CVSS7.6AI score0.04715EPSS
Exploits0References21
RedhatCVE
RedhatCVE
added 2025/05/22 10:2 a.m.9 views

CVE-2019-17091

faces/context/PartialViewContextImpl.java in Eclipse Mojarra, as used in Mojarra for Eclipse EE4J before 2.3.10 and Mojarra JavaServer Faces before 2.2.20, allows Reflected XSS because a client window field is mishandled...

6.1CVSS6AI score0.02469EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2020/09/07 12:57 p.m.3 views

Mojarra: Path traversal via either the loc parameter or the con parameter, incomplete fix of CVE-2018-14371

A flaw was found in Eclipse Mojarra before version 2.3.14, where it is vulnerable to a path traversal flaw via the loc parameter or the con parameter. An attacker could exploit this flaw to read arbitrary files...

7.5CVSS7AI score0.10124EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2020/08/31 3:40 p.m.4 views

mojarra: Path traversal in ResourceManager.java:getLocalePrefix() via the loc parameter

The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications...

7.5CVSS7.4AI score0.04425EPSS
Exploits0References4
OSV
OSV
added 2014/07/17 5:10 a.m.10 views

CVE-2013-5855

Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a 1 tag or 2 EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting XSS attacks via application-specific vectors...

5.4AI score
Exploits0References12
Rows per page
Query Builder