Description

Cross-site scripting (XSS) vulnerability in the JMX console in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2011-4575

Related Vulnerabilities

PostgreSQL Other Vulnerability (CVE-2007-0556)

Apache Traffic Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2021-43082)

WordPress Plugin Contact Form Entries-Contact Form 7, WPforms and more Cross-Site Scripting (1.2.0)

WordPress Plugin Users Ultra Membership Cross-Site Scripting (1.5.78)

MySQL CVE-2022-21328 Vulnerability (CVE-2022-21328)

Severity

Medium

Classification

CVE-2011-4575 CWE-20

Tags

Missing Update Known Vulnerabilities