Lucene search
Veracode Vulnerability DatabaseVERACODE:33735HistoryJan 18, 2022 - 4:48 a.m.
Cross-Site Scripting (XSS)
2022-01-1804:48:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.002 Low
EPSS
Percentile
62.3%
org.apache.knox:gateway-applications is vulnerable to a cross-site scripting (XSS) attacks. A remote attacker is able to use a specially crafted request to redirect a user to a malicious page controlled by the attacker, due to improper URL parsing.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gateway-applications | le | 1.6.0 | |
| gateway-applications | le | 1.6.0 |
Related
cnvd
cnvd
Apache Knox SSO Cross-Site Scripting Vulnerability
2022-01-18 00:00:00
osv
osv
CVE-2021-42357
2022-01-17 20:15:07
Cross-site Scripting in Apache Knox SSO
2022-01-21 23:52:00
prion
prion
Design/Logic Flaw
2022-01-17 20:15:00
cve
cve
CVE-2021-42357
2022-01-17 20:15:07
github
github
Cross-site Scripting in Apache Knox SSO
2022-01-21 23:52:00
cvelist
cvelist
CVE-2021-42357 DOM based XSS Vulnerability in Apache Knox
2022-01-17 19:25:09
nvd
nvd
CVE-2021-42357
2022-01-17 20:15:07