4 matches found
CVE-2023-38435
An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Apache Felix Healthcheck Webconsole Plugin version 2.0.2 and prior may allow an attacker to perform a reflected cross-site scripting XSS attack. Upgrade to Apache Felix Healthcheck...
biz.netcentric.aem.ops.healthchecks.migration:hc-migration-felix-healthcheck-package (=1.0.0) potentially affected by CVE-2023-38435 via org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin (=2.0.0)
org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin MAVEN version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin and may be impacted: -...
CVE-2023-38435
An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Apache Felix Healthcheck Webconsole Plugin version 2.0.2 and prior may allow an attacker to perform a reflected cross-site scripting XSS attack. Upgrade to Apache Felix Healthcheck...
CVE-2023-38435
CVE-2023-38435 concerns the Apache Felix Healthcheck Webconsole Plugin (v2.0.2 and earlier). The vulnerability arises from an improper neutralization of input during web page generation, i.e., a reflected Cross-Site Scripting (XSS) flaw (CWE-79). This could allow an attacker to inject and execute...