Lucene search
K

5 matches found

OSV
OSV
added 2021/04/07 11:2 a.m.3 views

OESA-2021-1122 velocity-tools security update

The VelocityTools project is a collection of useful Java classes aka tools, as well as infrastructure to easily, automatically and transparently make these tools available to Velocity templates. Project include easy integration of Velocity into the view-layer of web applications via the...

6.1CVSS6.9AI score0.06357EPSS
Exploits0References2
OSV
OSV
added 2021/03/12 8:24 p.m.4 views

GHSA-FH63-4R66-JC7V Cross-site scripting (XSS) in Apache Velocity Tools

The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. XSS vulnerabilities allow attackers to...

6.1CVSS6.9AI score0.06357EPSS
Exploits0References9
OSV
OSV
added 2021/03/10 8:15 a.m.2 views

DEBIAN-CVE-2020-13959

The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. XSS vulnerabilities allow attackers to...

6.1CVSS7.1AI score0.06357EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/03/10 8:15 a.m.27 views

CVE-2020-13959

The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. XSS vulnerabilities allow attackers to...

6.1CVSS6.9AI score0.06357EPSS
Exploits0References8
OSV
OSV
added 2021/03/10 8:15 a.m.4 views

UBUNTU-CVE-2020-13959

The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. XSS vulnerabilities allow attackers to...

6.1CVSS6.9AI score0.06357EPSS
Exploits0References9
Rows per page
Query Builder