2 matches found
CVE-2018-12432
JavaMelody up to version 1.60.0 is vulnerable to XSS via the counter parameter in the clear_counter action at the /monitoring URI. The root cause is unsanitized input in the counter parameter, enabling attacker-controlled script injection. Documented affected component: javamelody-core (JavaMelod...
smithhavenchryslerjeepdodge.financing.dealer.com XSS vulnerability
Open Bug Bounty ID: OBB-632299 Description| Value ---|--- Affected Website:| smithhavenchryslerjeepdodge.financing.dealer.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79...