8 matches found
EUVD-2022-3901
Malicious code in bioql PyPI...
GHSA-G66Q-GRXC-64J3 Cross-site Scripting in JavaMelody
JavaMelody through 1.60.0 has XSS via the counter parameter in a clearcounter action to the /monitoring URI...
Cross-site Scripting (XSS)
javamelody-core is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization in the counter parameter when performing the clearcounter action through the /monitoring URI, causing XSS attacks...
CVE-2018-12432
JavaMelody through 1.60.0 has XSS via the counter parameter in a clearcounter action to the /monitoring URI...
Design/Logic Flaw
JavaMelody through 1.60.0 has XSS via the counter parameter in a clearcounter action to the /monitoring URI...
CVE-2018-12432
JavaMelody through 1.60.0 has XSS via the counter parameter in a clearcounter action to the /monitoring URI...
CVE-2018-12432
JavaMelody through 1.60.0 has XSS via the counter parameter in a clearcounter action to the /monitoring URI...
CVE-2018-12432
JavaMelody up to version 1.60.0 is vulnerable to XSS via the counter parameter in the clear_counter action at the /monitoring URI. The root cause is unsanitized input in the counter parameter, enabling attacker-controlled script injection. Documented affected component: javamelody-core (JavaMelod...