Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2014-0096)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS5.9AI score0.90455EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/01/10 1:28 p.m.36 views

CVE-2013-6430

The JavaScriptUtils.javaScriptEscape method in web/util/JavaScriptUtils.java in Spring MVC in Spring Framework before 3.2.2 does not properly escape certain characters, which allows remote attackers to conduct cross-site scripting XSS attacks via a 1 line separator or 2 paragraph separator Unicod...

5.4AI score0.03198EPSS
Exploits0References3
CVE
CVE
added 2020/01/10 1:28 p.m.138 views

CVE-2013-6430

CVE-2013-6430 affects Spring Framework (Spring MVC) via the JavaScriptUtils.javaScriptEscape method, which fails to escape certain characters, enabling XSS via line/paragraph separators and angle brackets. The issue is documented for Spring Framework versions before 3.2.2. Connected advisories (D...

5.4CVSS5AI score0.03198EPSS
Exploits0References3Affected Software1
Debian
Debian
added 2014/02/08 2:41 p.m.43 views

[SECURITY] [DSA 2857-1] libspring-java security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2857-1 [email protected] http://www.debian.org/security/ Markus Koschany February 08, 2014 http://www.debian.org/security/faq -...

6.8CVSS6.9AI score0.90455EPSS
Exploits1
Rows per page
Query Builder