Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2022/05/17 3:13 a.m.0 views

GHSA-Q388-J7CW-FF7W Path Traversal in Eclipse Mojarra

Multiple path traversal flaws where found in Mojarra JSF2 implementation for identifying resources by name or from libraries. An unauthenticated remote attacker can use these flaws to gather otherwise undisclosed information from within an application's root...

5CVSS5.9AI score0.86817EPSS
Exploits0References4
0day.today
0day.todayadded 2019/09/22 12:0 a.m.49 views

Oracle Mojarra JSF / Eclipse Mojarra JSF 2.2 / 2.3 Cross Site Scripting Vulnerability

Exploit for java platform in category web applications ======================================================================= title: Reflected Cross-Site Scripting XSS product: Oracle Mojarra JSF included in Java EE 7 Eclipse Mojarra JSF vulnerable version: 2.2 & 2.3 fixed version:...

7.4AI score
Exploits0
Veracode
Veracodeadded 2017/04/04 6:53 a.m.20 views

Cross-site Scripting (XSS)

Mojarra JSF is vulnerable to cross-site scripting XSS attacks. These attacks are possible due to insufficient escaping of content in the outputText tags and the EL expressions...

4.3CVSS8.3AI score0.02316EPSS
Exploits0References12Affected Software1
RedHat Linux
RedHat Linuxadded 2015/03/24 9:5 p.m.48 views

Important: Red Hat Security Advisory: Red Hat JBoss Fuse Service Works 6.0.0 security update

Red Hat JBoss Fuse Service Works 6.0.0 roll up patch 4, which fixes multiple security issues and various bugs, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base score...

7.5CVSS6.6AI score0.69385EPSS
Exploits7References20
RedHat Linux
RedHat Linuxadded 2015/02/17 10:27 p.m.1 views

JSF: XSS due to insufficient escaping of user-supplied content in outputText tags and EL expressions

It was found that Mojarra JavaServer Faces did not properly escape user-supplied content in certain circumstances. Contents of outputText tags and raw EL expressions that immediately follow script or style elements were not escaped. A remote attacker could use a specially crafted URL to execute...

4.3CVSS7.5AI score0.02316EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2015/02/17 10:27 p.m.47 views

Important: Red Hat Security Advisory: Red Hat JBoss BRMS 6.0.3 security update

Red Hat JBoss BRMS 6.0.3 roll up patch 2, which fixes multiple security issues, several bugs, and adds various enhancements, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System...

7.5CVSS6.6AI score0.69385EPSS
Exploits7References22
Rows per page
Query Builder