9 matches found
K000150762: jsoup vulnerabilities CVE-2015-6748, CVE-2021-37714, and CVE-2022-36033
Security Advisory Description CVE-2015-6748 Cross-site scripting XSS vulnerability in jsoup before 1.8.3. CVE-2021-37714 jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML may be vulnerable to DOS attacks. If the parser is run ...
at.bestsolution:at.bestsolution.maven.publisher (>=1.0.0 <=1.1.1), at.newmedialab.ldpath:ldpath-functions-html (=0.9.13) +2717 more potentially affected by CVE-2015-6748 via org.jsoup:jsoup (>=1.6.0 <=1.8.2)
org.jsoup:jsoup MAVEN version =1.6.0, =1.0.0, =0.3.1, =0.1.0, =1.0, =1.0, =1.16.0, =2.2.0 and more Source cves: CVE-2015-6748 Source advisory: OSV:GHSA-48RH-QGJR-XFJ6...
[SECURITY] [DLA 2075-1] jsoup security update
Package : jsoup Version : 1.8.1-1+deb8u1 CVE ID : CVE-2015-6748 An issue has been found in jsoup, a Java HTML parser that makes sense of real-world HTML soup. Due to bad handling of missing at EOF a cross-site scripting XSS vulnerability could appear. For Debian 8 "Jessie", this problem has been...
Security Bulletin: Vulnerability in JSoup affects IBM Forms Experience Builder (CVE-2015-6748)
Summary A JSoup vulnerablity which allows a remote attacker to exploit a specially-crafted URL to access user authentication credentials was addressed by IBM Forms Experience Builder. Vulnerability Details CVE-ID: CVE-2015-6748 Description: JSoup is vulnerable to cross-site scripting, caused by...
CVE-2015-6748
Cross-site scripting XSS vulnerability in jsoup before 1.8.3...
CVE-2015-6748
Cross-site scripting XSS vulnerability in jsoup before 1.8.3...
CVE-2015-6748
CVE-2015-6748 affects the jsoup HTML parser library with a cross-site scripting (XSS) vulnerability present in versions before 1.8.3. Exploitation details are not provided in the documents beyond the XSS note; remediation is to upgrade to jsoup 1.8.3 or later.
Critical: Red Hat Security Advisory: Red Hat JBoss BRMS 6.2.0 update
Red Hat JBoss BRMS 6.2.0, which fixes three security issues, several bugs, and adds various enhancements, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, whi...
MGASA-2015-0340 Updated jsoup package fixes security vulnerability
Jsoup before 1.8.3 was vulnerable to a possible XSS issue in the validator, related to how it handled tags without a closing '' when reaching EOF CVE-2015-6748...