Количество 2
Количество 2
CVE-2013-4378
больше 12 лет назад
Cross-site scripting (XSS) vulnerability in HtmlSessionInformationsReport.java in JavaMelody 1.46 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted X-Forwarded-For header.
CVSS2: 4.3
EPSS: Низкий
GHSA-p4mx-p49m-8rw4
больше 3 лет назад
Improper Neutralization of Input During Web Page Generation in JavaMelody
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2013-4378 Cross-site scripting (XSS) vulnerability in HtmlSessionInformationsReport.java in JavaMelody 1.46 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted X-Forwarded-For header. | CVSS2: 4.3 | 1% Низкий | больше 12 лет назад |
| GHSA-p4mx-p49m-8rw4 Improper Neutralization of Input During Web Page Generation in JavaMelody | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20