Description
Cross-site scripting (XSS) vulnerability in the JMX console in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2014-2409 Vulnerability (CVE-2014-2409)
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-33816)
WordPress Plugin Alojapro Widget Cross-Site Scripting (1.1.15)
WebLogic CVE-2024-21182 Vulnerability (CVE-2024-21182)
Apache Traffic Server Integer Overflow or Wraparound Vulnerability (CVE-2018-9481)