Lucene search
K

110 matches found

RedHat Linux
RedHat Linux
added 2006/07/14 10:38 a.m.6 views

tomcat examples XSS

Multiple cross-site scripting XSS vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 time parameter to cal2.jsp and 2 any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer...

4.3CVSS5.8AI score0.32247EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2006/03/07 8:30 p.m.3 views

tomcat examples XSS

Multiple cross-site scripting XSS vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 time parameter to cal2.jsp and 2 any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer...

4.3CVSS5.8AI score0.32247EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2006/01/21 12:0 a.m.39 views

geronimo_css.txt

Apache Geronimo 1.0 - CSS and persistent HTML-Injection vulnerabilities ======================================================================== Product: ======== Apache Geronimo is the J2EE server project of the Apache Software Foundation. Version: ======== Apache Geronimo 1.0, Jetty 5.1.9...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2006/01/18 2:0 a.m.39 views

CVE-2006-0254

Multiple cross-site scripting XSS vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 time parameter to cal2.jsp and 2 any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer...

7.9AI score0.32247EPSS
Exploits1References12
CVE
CVE
added 2006/01/18 2:0 a.m.115 views

CVE-2006-0254

CVE-2006-0254 describes cross-site scripting in Apache Geronimo 1.0 via the time parameter to cal2.jsp and any invalid parameter, exploitable when the log file is viewed in the Web-Access-Log viewer. Related OSV/GHSA entries confirm XenS issues and note that Geronimo 1.1 contains fixes. Remediati...

4.3CVSS7.9AI score0.32247EPSS
Exploits1References12Affected Software1
Prion
Prion
added 2006/01/18 1:51 a.m.23 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 time parameter to cal2.jsp and 2 any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer...

4.3CVSS5.2AI score0.32247EPSS
Exploits1References12Affected Software1
exploitpack
exploitpack
added 2006/01/16 12:0 a.m.21 views

Apache Tomcat Geronimo 1.0 - Sample Script cal2.jsp?time Cross-Site Scripting

Apache Tomcat Geronimo 1.0 - Sample Script cal2.jsp?time Cross-Site Scripting source: https://www.securityfocus.com/bid/16260/info Apache Geronimo is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit cou...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2006/01/16 12:0 a.m.14 views

Apache Geronimo 1.0 - Error Page Cross-Site Scripting

Apache Geronimo 1.0 - Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/16260/info Apache Geronimo is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit could allow an attacker to...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2006/01/16 12:0 a.m.28 views

Apache Geronimo 1.0 - Error Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/16260/info Apache Geronimo is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit could allow an attacker to compromise the application, access or modify data, or...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2006/01/16 12:0 a.m.28 views

Apache Tomcat / Geronimo 1.0 - 'Sample Script cal2.jsp?time' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16260/info Apache Geronimo is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit could allow an attacker to compromise the application, access or modify data, or...

7.4AI score
Exploits0
Rows per page
Query Builder