WEB APPLICATION VULNERABILITIES Standard & Premium

Jetty Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-5046)

Description

JSP Dump and Session Dump Servlet XSS in jetty before 6.1.22.

Remediation

References

Related Vulnerabilities

MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4098)

WordPress Plugin AccessPress iFeeds includes Backdoor [Only if downloaded via the vendor website] (4.0.3)

WordPress Plugin MyBlogU Cross-Site Scripting (0.0.7)

Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-25955)

WordPress Plugin GarageSale Cross-Site Scripting (1.2.2)

Severity

Medium

Classification

CVE-2009-5046 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities