exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2013-5855

больше 11 лет назад

Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) <h:outputText> tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.

CVSS2: 4.3

EPSS: Низкий

CVE-2013-5855

почти 12 лет назад

Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) <h:outputText> tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.

CVSS2: 4.3

EPSS: Низкий

CVE-2013-5855

больше 11 лет назад

Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) <h:outputText> tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.

CVSS2: 4.3

EPSS: Низкий

CVE-2013-5855

больше 11 лет назад

Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not per ...

CVSS2: 4.3

EPSS: Низкий

GHSA-3m3r-82gc-53mj

больше 3 лет назад

Improper Neutralization of Input During Web Page Generation in Mojarra

EPSS: Низкий

BDU:2015-00734

больше 11 лет назад

Уязвимость программного обеспечения WebLogic Server, позволяющая удаленному злоумышленнику нарушить защищаемой информации

CVSS2: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2013-5855 Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) <h:outputText> tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.	CVSS2: 4.3	3% Низкий	больше 11 лет назад
CVE-2013-5855 Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) <h:outputText> tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.	CVSS2: 4.3	3% Низкий	почти 12 лет назад
CVE-2013-5855 Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) <h:outputText> tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.	CVSS2: 4.3	3% Низкий	больше 11 лет назад
CVE-2013-5855 Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not per ...	CVSS2: 4.3	3% Низкий	больше 11 лет назад
GHSA-3m3r-82gc-53mj Improper Neutralization of Input During Web Page Generation in Mojarra		3% Низкий	больше 3 лет назад
BDU:2015-00734 Уязвимость программного обеспечения WebLogic Server, позволяющая удаленному злоумышленнику нарушить защищаемой информации	CVSS2: 4.3	3% Низкий	больше 11 лет назад

Уязвимостей на страницу