Описание
Eclipse GlassFish is vulnerable to Stored XSS attacks through configuration file modifications
In Eclipse GlassFish version 7.0.15 is possible to perform Stored Cross-site Scripting attacks by modifying the configuration file in the underlying operating system.
Пакеты
Наименование
org.glassfish.main.admingui:console-common
maven
Затронутые версииВерсия исправления
<= 7.0.25
Отсутствует
Связанные уязвимости
CVSS3: 5.4
nvd
7 месяцев назад
In Eclipse GlassFish version 7.0.15 is possible to perform Stored Cross-site Scripting attacks by modifying the configuration file in the underlying operating system.