Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 12:44 p.m.10 views

CVE-2023-38435

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Apache Felix Healthcheck Webconsole Plugin version 2.0.2 and prior may allow an attacker to perform a reflected cross-site scripting XSS attack. Upgrade to Apache Felix Healthcheck...

6.1CVSS5.7AI score0.01826EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2023/07/25 6:30 p.m.6 views

biz.netcentric.aem.ops.healthchecks.migration:hc-migration-felix-healthcheck-package (=1.0.0) potentially affected by CVE-2023-38435 via org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin (=2.0.0)

org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin MAVEN version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin and may be impacted: -...

6.1CVSS6.3AI score0.01826EPSS
Exploits0
NVD
NVD
added 2023/07/25 4:15 p.m.35 views

CVE-2023-38435

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Apache Felix Healthcheck Webconsole Plugin version 2.0.2 and prior may allow an attacker to perform a reflected cross-site scripting XSS attack. Upgrade to Apache Felix Healthcheck...

6.1CVSS6AI score0.01826EPSS
Exploits0References3
CVE
CVE
added 2023/07/25 3:40 p.m.63 views

CVE-2023-38435

CVE-2023-38435 concerns the Apache Felix Healthcheck Webconsole Plugin (v2.0.2 and earlier). The vulnerability arises from an improper neutralization of input during web page generation, i.e., a reflected Cross-Site Scripting (XSS) flaw (CWE-79). This could allow an attacker to inject and execute...

6.1CVSS6AI score0.01826EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder