3 matches found
GHSA-64GP-R758-8PFM Cross Site Scripting (XSS) vulnerability while uploading content to a new deployment
A vulnerability was found in the WildFly management console. A user may perform cross-site scripting in the deployment system. An attacker or insider may execute a malicious payload which could trigger an undesired behavior against the server. Impact Cross-site scripting XSS vulnerability in the...
PT-2024-40113 · Red Hat · Wildfly Management Console
Name of the Vulnerable Software and Affected Versions: WildFly management console affected versions not specified Description: A cross-site scripting issue was found in the WildFly management console, specifically in the deployment system, allowing a user to perform cross-site scripting. This cou...
AS/WildFly: missing X-Frame-Options header leading to clickjacking
It was discovered that the EAP Management Console could be opened in an IFRAME, which made it possible to intercept and manipulate requests. An attacker could use this flaw to trick a user into performing arbitrary actions in the Console clickjacking...