Lucene search
+L

Cross-Site Scripting (XSS)

🗓️ 04 Aug 2020 00:48:31Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode
🔗 sca.analysiscenter.veracode.com👁 26 Views

restws is vulnerable to cross-site scripting by remotely authenticated use

Related
Detection
Refs
ReporterTitlePublishedViews
Family
cve
CVE-2013-4225
11 Feb 202020:19
cve
cvelist
CVE-2013-4225
11 Feb 202020:19
cvelist
drupal
SA-CONTRIB-2013-062 - RESTful Web Services (RESTWS) - Access Bypass
7 Aug 201300:00
drupal
euvd
EUVD-2013-4129
7 Oct 202500:30
euvd
nvd
CVE-2013-4225
11 Feb 202021:15
nvd
osv
RHEA-2014:1175 Red Hat Enhancement Advisory: Release of Satellite 6.0
15 Sep 202421:58
osv
prion
Cross site scripting
11 Feb 202021:15
prion
ptsecurity
PT-2020-7484 · Drupal · Drupal Restws Module
11 Feb 202000:00
ptsecurity
redhat
Critical: Red Hat Enhancement Advisory: Release of Satellite 6.0
10 Sep 201413:09
redhat
redhat
Katello: proxied Candlepin calls authorization bypass
10 Sep 201413:09
redhat
Rows per page
Vulners
Node
OR
python-requestspython-requestsMatch1.1.0_3.1.1.el6
python-requestspython-requestsMatch1.1.0_8.1.el7ost
atlassianoauthMatch20100601_3.el6
rubygem-tiltrubygem-tiltMatch1.3.2_3.el6
rubygem-tiltrubygem-tiltMatch1.3.3_14.el6sat
redhatresteasyMatch2.3.6_1.final_redhat_1.ep6.el6
redhatresteasyMatch2.3.7.1_1.final_redhat_1.1.ep6.el6
redhatresteasyMatch1.2.1_9.cp02.5.ep5.el6
redhatresteasyMatch1.2.1_10.cp02_patch01.1.ep5.el6
redhatresteasyMatch1.2.1_17.cp02_patch02.1.ep5.el6
redhatresteasyMatch2.3.2_2.final_redhat_1.ep6.el6
redhatresteasyMatch2.3.7_2.final_redhat_2.ep6.el6
redhatresteasyMatch2.3.4_4.final_redhat_2.ep6.el6.3
redhatresteasyMatch1.2.1_8.cp01.8.ep5.el6
redhatresteasyMatch2.3.3_4.final_redhat_1.ep6.el6
rubygem-rdocrubygem-rdocMatch3.8_6.el6op
rubygem-rdocrubygem-rdocMatch3.8_6.el6cf
rubygem-rdocrubygem-rdocMatch3.8_9.el6op
python-amqppython-amqpMatch1.3.3_1.el6
python-amqppython-amqpMatch1.0.13_1.el7ost
python-amqppython-amqpMatch1.0.13_1.el6ost
qpid-toolsqpid-toolsMatch0.7.946106_4.el6
qpid-toolsqpid-toolsMatch0.18_10.el7
qpid-toolsqpid-toolsMatch0.18_10.el6_4
qpid-toolsqpid-toolsMatch0.10_3.el6
qpid-toolsqpid-toolsMatch0.12_2.el6
qpid-toolsqpid-toolsMatch0.14_6.el6_3
qpid-toolsqpid-toolsMatch0.14_2.el6_2
qpid-toolsqpid-toolsMatch0.10_5.el6
qpid-toolsqpid-toolsMatch0.18_8.el6
glassfish-jafglassfish-jafMatch1.1.0_8.ep5.el6
scannotationscannotationMatch1.0.2_3.2.1.ep5.el6
ruby-augeasruby-augeasMatch0.3.0_1.el6
sun-txw2sun-txw2Match20110809.0.0_1.redhat_5.1.ep6.el6
sun-txw2sun-txw2Match20110809_3_redhat_1.ep6.el6
katello-agentkatello-agentMatch1.1.2_1.el6cf
createrepocreaterepoMatch0.9.9_18.el6
createrepocreaterepoMatch0.9.8_5.1.el6_2
createrepocreaterepoMatch0.9.8_4.el6
createrepocreaterepoMatch0.9.9_17.el6
createrepocreaterepoMatch0.9.8_5.el6
nettynettyMatch3.2.5_6.ep5.el6
nettynettyMatch3.2.3_5.3.ep5.el6
mod_wsgimod_wsgiMatch3.3_3.pulp.el6
mod_wsgimod_wsgiMatch3.2_3.el6
mod_wsgimod_wsgiMatch3.3_2.pulp.el6
mod_wsgimod_wsgiMatch3.2_3.sslpatch.el6
mod_wsgimod_wsgiMatch3.2_1.el6
mongodbmongodbMatch2.2.3_2.el6op
mongodbmongodbMatch2.2.4_3.el6ost
mongodbmongodbMatch2.0.2_2.el6op
mongodbmongodbMatch1.6.4_4.el6
mongodbmongodbMatch1.6.4_7.el6
mongodbmongodbMatch1.6.4_6.el6
mongodbmongodbMatch2.2.4_2.el6ost
mongodbmongodbMatch2.0.2_6.el6op
mongodbmongodbMatch2.2.4_6.el6ost
mongodbmongodbMatch2.2.4_4.el6ost
mongodbmongodbMatch2.2.4_2.el6sat
mongodbmongodbMatch1.8.2_2.el6
mongodbmongodbMatch1.6.4_3.el6_0
mongodbmongodbMatch1.8.2_4.el6
liquibaseliquibaseMatch2.0.3_7.el6_2
theforemanforemanMatch1.3.0_28.el6sat
theforemanforemanMatch1.3.0.2_1.el6sat
theforemanforemanMatch1.6.0.21_2.el6sat
theforemanforemanMatch1.3.0.4_1.el6sat
jboss-common-corejboss-common-coreMatch2.2.17_1.2.ep5.el6
rubygem-gssapirubygem-gssapiMatch1.1.2_3.el6sat
python-pymongopython-pymongoMatch2.5.2_2.el7ost
qpid-qmfqpid-qmfMatch0.18_24.el6
qpid-qmfqpid-qmfMatch0.12_6.el6
qpid-qmfqpid-qmfMatch0.18_24.el7
qpid-qmfqpid-qmfMatch0.14_7.el6_2
qpid-qmfqpid-qmfMatch0.10_6.el6
qpid-qmfqpid-qmfMatch0.10_10.el6
qpid-qmfqpid-qmfMatch0.18_20.el6
qpid-qmfqpid-qmfMatch0.18_15.el6
qpid-qmfqpid-qmfMatch0.18_18.el6_4
qpid-qmfqpid-qmfMatch0.14_14.el6_3
sun-istack-commonssun-istack-commonsMatch2.6.1_2_redhat_1.ep6.el6
redhathornetqMatch2.2.10_1.ga.2.ep5.el6
redhathornetqMatch2.2.24_1.eap.ga.ep5.el6
redhathornetqMatch2.2.13_1.final.2.ep6.el6
redhathornetqMatch2.3.1_1.final_redhat_1.ep6.el6
redhathornetqMatch2.2.23_1.final_redhat_1.ep6.el6
redhathornetqMatch2.2.16_1.final.ep6.el6
hibernate4hibernate4Match4.1.6_7.final_redhat_3.ep6.el6
hibernate4hibernate4Match4.2.0_7.sp1_redhat_1.ep6.el6
hibernate4hibernate4Match4.1.3_2.8.final.ep6.el6
hibernate4hibernate4Match4.2.0_3.final_redhat_1.ep6.el6
hibernate4hibernate4Match4.1.3_2.9.final.ep6.el6
rubygem-sinatrarubygem-sinatraMatch1.3.6_24.el6sat
python-kombupython-kombuMatch2.5.16_3.el7ost
python-kombupython-kombuMatch2.5.16_3.el6ost
python-kombupython-kombuMatch2.5.16_1.el7
python-kombupython-kombuMatch1.1.3_2.el6
rubygem-ansirubygem-ansiMatch1.4.3_2.el6sat
rubygem-ansirubygem-ansiMatch1.4.3_2.el7
rubygem-ansirubygem-ansiMatch1.4.3_2.el6
rubygem-hashierubygem-hashieMatch2.0.5_1.el6sat
javassistjavassistMatch3.12.0_3.ep5.el6
javassistjavassistMatch3.12.0_6.sp1.ep5.el6
candlepinprojectcandlepinMatch0.9.6.4_1.el6sam
candlepinprojectcandlepinMatch0.5.26_1.el6
candlepinprojectcandlepinMatch0.7.23_1.el6_3
candlepinprojectcandlepinMatch0.5.21_1.el6
candlepinprojectcandlepinMatch0.7.19_3.el6cf
candlepinprojectcandlepinMatch0.8.26.0_1.el6sam
candlepinprojectcandlepinMatch0.6.5_1.el6_2
candlepinprojectcandlepinMatch0.9.6_1.el6_5
candlepinprojectcandlepinMatch0.7.8.1_1.el6cf
candlepinprojectcandlepinMatch0.8.26_1.el6sam
candlepinprojectcandlepinMatch0.9.6.5_1.el6sam
candlepinprojectcandlepinMatch0.7.24_1.el6_3
dom4j_projectdom4jMatch1.6.1_11.1.ep5.el6
dom4j_projectdom4jMatch1.6.1_10.4.7.ep5.el6
gofer_projectgoferMatch0.43_1.el6
gofer_projectgoferMatch0.64_1.el6
gofer_projectgoferMatch0.66.1_2.el6cf
gofer_projectgoferMatch0.66_1.el6
gofer_projectgoferMatch0.65.rhui_1.el6_3
jbosstsjbosstsMatch4.6.1_10.cp11_patch_01.3.ep5.el6
jbosstsjbosstsMatch4.6.1_11.cp12.4.ep5.el6
rubygem-localerubygem-localeMatch2.0.9_6.el6sat
jboss-specs-parentjboss-specs-parentMatch1.0.0_0.3.beta2.ep5.el6
rubygem-loggingrubygem-loggingMatch1.8.1_25.el6sat
rubygem-jsonrubygem-jsonMatch1.4.6_1.el6
elasticsearchelasticsearchMatch0.19.9_5.el6_3
elasticsearchelasticsearchMatch0.18.4_11.el6
elasticsearchelasticsearchMatch0.19.9_8.el6sat
hibernate4-validatorhibernate4-validatorMatch4.2.0_7.final_redhat_2.1.ep6.el6.4
hibernate4-validatorhibernate4-validatorMatch4.3.1_1.final_redhat_1.1.ep6.el6.4
hibernate4-validatorhibernate4-validatorMatch4.2.0_4.final_redhat_1.1.ep6.el6
foreman-proxyforeman-proxyMatch1.6.0.8_1.el6sat
foreman-proxyforeman-proxyMatch1.3.0_3.el6sat
foreman-proxyforeman-proxyMatch1.3.0_5.el6sat
glassfish-jaxbglassfish-jaxbMatch2.1.12_12_patch_03.ep5.el6
glassfish-jaxbglassfish-jaxbMatch2.2.5_14.redhat_5.ep6.el6
glassfish-jaxbglassfish-jaxbMatch2.1.12_10_patch_02.ep5.el6
glassfish-jaxbglassfish-jaxbMatch2.1.12_9.ep5.el6
glassfish-jaxbglassfish-jaxbMatch2.2.4_0.6_redhat_1.ep6.el6
glassfish-jaxbglassfish-jaxbMatch2.2.5_10_redhat_3.ep6.el6
glassfish-jaxbglassfish-jaxbMatch2.2.5_4_redhat_1.ep6.el6
jboss-loggingjboss-loggingMatch3.1.1_1.ga_redhat_1.ep6.el6
jboss-loggingjboss-loggingMatch3.1.0_5.ga_redhat_1.1.ep6.el6
hibernate-jpa-2.0-apihibernate-jpa-2.0-apiMatch1.0.1_3.final_redhat_1.1.ep6.el6
rubygem-kaforubygem-kafoMatch0.0.14_1.el6sat
rubygem-kaforubygem-kafoMatch0.6.4_1.el6ost
rubygemsrubygemsMatch1.3.7_4.el6_4
rubygemsrubygemsMatch1.3.7_1.el6
python-webpypython-webpyMatch0.32_8.el6_0
python-qpidpython-qpidMatch0.14_7.el6_2
python-qpidpython-qpidMatch0.14_8.el6
python-qpidpython-qpidMatch0.10_1.el6
python-qpidpython-qpidMatch0.18_9.el6
python-qpidpython-qpidMatch0.18_5.el6_4
python-qpidpython-qpidMatch0.18_12.el6
python-qpidpython-qpidMatch0.14_11.el6_3
python-qpidpython-qpidMatch0.7.946106_12.el6
python-qpidpython-qpidMatch0.12_1.el6
python-qpidpython-qpidMatch0.18_4.el6
python-qpidpython-qpidMatch0.18_12.el7
apacheqpid-cppMatch0.18_17.el6_4
apacheqpid-cppMatch0.10_8.el6_1
apacheqpid-cppMatch0.7.946106_5.el6
apacheqpid-cppMatch0.18_14.el6
apacheqpid-cppMatch0.10_6.el6
apacheqpid-cppMatch0.10_3.el6
apacheqpid-cppMatch0.12_6.el6
apacheqpid-cppMatch0.18_18.el6
apacheqpid-cppMatch0.14_16.el6
apacheqpid-cppMatch0.18_25.el6
apacheqpid-cppMatch0.14_22.el6_3
apacheqpid-cppMatch0.18_25.el7
apacheqpid-cppMatch0.18_20.el6
apacheqpid-cppMatch0.14_14.el6_2
qosslf4jMatch1.5.8_10_patch_01.2.ep5.el6
qosslf4jMatch1.5.8_7.el6
qosslf4jMatch1.5.8_8.el6
qosslf4jMatch1.6.1_15_redhat_1.3.ep6.el6
qosslf4jMatch1.5.8_8.ep5.el6
urbanairshippython-oauth2Match1.2.1_3.el6_0
urbanairshippython-oauth2Match1.5.170_3.pulp.el6sat
urbanairshippython-oauth2Match1.5.170_2.pulp.el6
foreman-selinuxforeman-selinuxMatch1.6.0.3_2.el6sat
puppetpuppetMatch2.6.18_1.el6ost
puppetpuppetMatch2.6.14_1.el6
puppetpuppetMatch3.2.4_3.el6_5
puppetpuppetMatch2.6.11_1.el6_1
puppetpuppetMatch3.4.3_2.el7
puppetpuppetMatch2.6.17_2.el6ost
puppetpuppetMatch3.2.4_1.el6_4
puppetpuppetMatch2.6.17_2.el6cf
sigarsigarMatch1.6.5_0.4.git58097d9.el6
sigarsigarMatch1.6.5_0.1.git833ca18.el6
rubygem-clamprubygem-clampMatch0.6.1_10.el6sat
rubygem-clamprubygem-clampMatch0.6.2_1.el6sat
python-isodatepython-isodateMatch0.4.4_4.pulp.el6
httpcomponentshttpcomponentsMatch6_7.redhat_1.ep6.el6
httpcomponentshttpcomponentsMatch5_1_redhat_1.ep6.el6
httpcomponentshttpcomponentsMatch5_4_redhat_2.ep6.el6
pyparsingpyparsingMatch1.5.6_1.el6
puppetfacterMatch1.7.4_1.el6
puppetfacterMatch1.7.4_1.el7
puppetfacterMatch1.5.9_1.el6
puppetfacterMatch1.6.6_1.el6ost
puppetfacterMatch1.6.6_1.el6_4
puppetfacterMatch1.6.6_1.el6op
rubygem-rackrubygem-rackMatch1.3.0_3.el6op
rubygem-rackrubygem-rackMatch1.3.0_3.el6cf
rubygem-rackrubygem-rackMatch1.3.0_2.el6
rubygem-rackrubygem-rackMatch1.1.0_2.el6
rubygem-rackrubygem-rackMatch1.3.0_4.el6op
rubygem-rackrubygem-rackMatch1.3.0_4.el6cf
rubygem-rackrubygem-rackMatch1.3.0_1.el6
rubygem-rackrubygem-rackMatch1.4.1_10.el6sat
rubygem-ffirubygem-ffiMatch1.0.9_3.el6
rubygem-ffirubygem-ffiMatch1.0.9_11.el6sat
bouncycastlebouncycastleMatch1.46_3.4.ep6.el6
rubygem-thorrubygem-thorMatch0.14.6_2.el6_0
rubygem-thorrubygem-thorMatch0.14.6_3.el6
rubygem-thorrubygem-thorMatch0.14.6_2.el6op
jboss-jaxb-api_2.2_specjboss-jaxb-api_2.2_specMatch1.0.4_1.final_redhat_1.1.ep6.el6
rubygem-rakerubygem-rakeMatch0.9.2_1.el6
rubygem-rakerubygem-rakeMatch0.8.7_2.1.el6
rubygem-rakerubygem-rakeMatch0.9.2.2_40.el6sat
saslwrappersaslwrapperMatch0.16_5.el7
saslwrappersaslwrapperMatch0.10_2.el6
saslwrappersaslwrapperMatch0.1.934605_2.el6
saslwrappersaslwrapperMatch0.18_1.el6_3
saslwrappersaslwrapperMatch0.14_1.el6
saslwrappersaslwrapperMatch0.18_1.el7
googlev8Match3.14.5.10_2.el7ost
googlev8Match3.14.5.10_2.el6ost
googlev8Match3.14.5.8_1.el6ost
googlev8Match3.14.5.10_2.el6op
googlev8Match3.14.5.8_1.el6sat
rubygem-oauthrubygem-oauthMatch0.4.7_6.el6sat
qpid-javaqpid-javaMatch0.10_9.el6
qpid-javaqpid-javaMatch0.10_6.el6
qpid-javaqpid-javaMatch0.18_8.el6_4
qpid-javaqpid-javaMatch0.18_2.el6
qpid-javaqpid-javaMatch0.18_7.el6
qpid-javaqpid-javaMatch0.14_3.el6
katellokatelloMatch0.1.238_3.el6
katellokatelloMatch1.4.3.26_1.el6sam_splice
katellokatelloMatch1.4.3.23_1.el6sam_splice
katellokatelloMatch1.1.12.2_5.el6cf
katellokatelloMatch1.1.12_22.el6cf
katellokatelloMatch1.4.3.20_1.el6sam_splice
katellokatelloMatch0.1.318_1.el6cf
katellokatelloMatch0.1.320_1.el6cf
katellokatelloMatch0.1.311_1.el6_2
katellokatelloMatch1.4.3_16.el6sam_splice
katellokatelloMatch0.3.4_1.el6_2
katellokatelloMatch1.4.3_18.el6sam_splice
katellokatelloMatch1.2.1.1_1h.el6_4
katellokatelloMatch0.3.3_1.el6_2
katellokatelloMatch0.1.307_1.el6
katellokatelloMatch1.2.1_15h.el6_3
python-anyjsonpython-anyjsonMatch0.3.3_3.el7ost
pulp_projectpulpMatch0.0.263_18.el6
pulp_projectpulpMatch0.0.263_19.el6
pulp_projectpulpMatch1.0.4_1.el6
pulp_projectpulpMatch0.0.263_43.el6_5
pulp_projectpulpMatch1.1.14_1.el6cf
pulp_projectpulpMatch0.0.214_8.el6
pulp_projectpulpMatch0.0.214_1.el6
pulp_projectpulpMatch0.0.263_32.el6_4
pulp_projectpulpMatch1.1.15_1.el6cf
python-rhsmpython-rhsmMatch1.8.17_1.el6_4
python-rhsmpython-rhsmMatch1.1.8_1.el6
python-rhsmpython-rhsmMatch0.95.14_1.el6_1
python-rhsmpython-rhsmMatch0.95.6_1.el6
python-rhsmpython-rhsmMatch1.9.6_1.el6
python-rhsmpython-rhsmMatch0.96.15_1.el6
python-rhsmpython-rhsmMatch1.9.7_1.el6_5
python-rhsmpython-rhsmMatch0.99.12_1.el6
fedoraprojectsssdMatch1.5.1_34.el6_1.1
fedoraprojectsssdMatch1.5.1_34.el6_1.2
fedoraprojectsssdMatch1.2.1_28.el6
fedoraprojectsssdMatch1.5.1_34.el6_1.3
fedoraprojectsssdMatch1.9.2_82.11.el6_4
fedoraprojectsssdMatch1.9.2_129.el6_5.4
fedoraprojectsssdMatch1.9.2_82.4.el6_4
fedoraprojectsssdMatch1.9.2_82.el6
fedoraprojectsssdMatch1.9.2_82.10.el6_4
fedoraprojectsssdMatch1.2.1_28.el6_0.2
fedoraprojectsssdMatch1.5.1_66.el6_2.1
fedoraprojectsssdMatch1.9.2_129.el6
fedoraprojectsssdMatch1.5.1_66.el6_2.3
fedoraprojectsssdMatch1.5.1_34.el6
fedoraprojectsssdMatch1.8.0_32.el6
fedoraprojectsssdMatch1.2.1_28.el6_0.4
fedoraprojectsssdMatch1.9.2_82.7.el6_4
fedoraprojectsssdMatch1.5.1_66.el6

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

13 Feb 2023 01:46Current
2.8Low risk
Vulners AI Score2.8
CVSS 26.8
CVSS 3.18.8
EPSS0.02054
26