2 matches found
CVE-2009-2283
CVE-2009-2283 : The Sun Java Web Console 3.0.2–3.0.5 (Sun Solaris 10) contains multiple XSS vulnerabilities in the help jsp scripts (e.g., helpwindow.jsp, masthead.jsp). An attacker could inject arbitrary HTML/script in the user’s browser session. The vectors are not specified in the provided doc...
CVE-2008-5550
CVE-2008-5550 is an open redirect vulnerability in Sun Java Web Console, affecting Sun Java Web Console 3.0.2–3.0.5 and Solaris 10. It stems from BeginLogin.jsp (console/faces/jsp/login/BeginLogin.jsp) and allows remote attackers to redirect users to arbitrary sites via the redirect_url parameter...