Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:20691
HistoryJul 08, 2019 - 10:31 a.m.

Cross-Site Scripting (XSS)

2019-07-0810:31:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

JSON

jetty is vulnerable to cross-site scripting (XSS). A remote attacker is able to inject arbitrary Javascript into a victim’s browser via multiple parameters.

CPENameOperatorVersion
jetty serverle6.1.21
jetty serverle6.1.21

Related

prion 1
cve 1
ubuntucve 1
nessus 1
openvas 2
ibm 2
prion
prion
Cross site scripting
2010-01-13 20:30:00
cve
cve
CVE-2009-4612
2010-01-13 20:30:00
ubuntucve
ubuntucve
CVE-2009-4612
2010-01-13 00:00:00
nessus
nessus
Mort Bay Jetty Multiple XSS
2010-01-26 00:00:00
openvas
openvas
Mort Bay Jetty Multiple Cross Site Scripting Vulnerabilities
2010-02-02 00:00:00
Mort Bay Jetty Multiple Vulnerabilities
2010-02-02 00:00:00
ibm
ibm
Security Bulletin: Jetty vulnerabilities found in IBM Sterling B2B Integrator and IBM Sterling File Gateway (CVE-2011-4461, CVS-2009-4612, CVE-2009-4611, CVE-2009-4610, CVS-2009-4609, CVE-2009-1524, CVE-2009-1523)
2020-02-11 18:29:33
Security Bulletin: Provision to add https and Secure Flag to bayeux_browser cookie for IBM Control Desk.
2022-09-19 20:54:31

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

JSON
Related for VERACODE:20691
prion1cve1ubuntucve1nessus1openvas2ibm2