exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2019-3872

больше 6 лет назад

It was found that a SAMLRequest containing a script could be processed by Picketlink versions shipped in Jboss Application Platform 7.2.x and 7.1.x. An attacker could use this to send a malicious script to achieve cross-site scripting and obtain unauthorized information or conduct further attacks.

CVSS3: 5.4

EPSS: Низкий

CVE-2019-3872

больше 6 лет назад

It was found that a SAMLRequest containing a script could be processed by Picketlink versions shipped in Jboss Application Platform 7.2.x and 7.1.x. An attacker could use this to send a malicious script to achieve cross-site scripting and obtain unauthorized information or conduct further attacks.

CVSS3: 5.4

EPSS: Низкий

GHSA-5qcq-825g-ghpg

больше 3 лет назад

It was found that a SAMLRequest containing a script could be processed by Picketlink versions shipped in Jboss Application Platform 7.2.x and 7.1.x. An attacker could use this to send a malicious script to achieve cross-site scripting and obtain unauthorized information or conduct further attacks.

CVSS3: 5.4

EPSS: Низкий

BDU:2020-04801

больше 6 лет назад

Уязвимость платформы JBoss Enterprise Application Platform, существует из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю осуществлять межсайтовые сценарные атаки и раскрыть защищаемую информацию

CVSS3: 5.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-3872 It was found that a SAMLRequest containing a script could be processed by Picketlink versions shipped in Jboss Application Platform 7.2.x and 7.1.x. An attacker could use this to send a malicious script to achieve cross-site scripting and obtain unauthorized information or conduct further attacks.	CVSS3: 5.4	0% Низкий	больше 6 лет назад
CVE-2019-3872 It was found that a SAMLRequest containing a script could be processed by Picketlink versions shipped in Jboss Application Platform 7.2.x and 7.1.x. An attacker could use this to send a malicious script to achieve cross-site scripting and obtain unauthorized information or conduct further attacks.	CVSS3: 5.4	0% Низкий	больше 6 лет назад
GHSA-5qcq-825g-ghpg It was found that a SAMLRequest containing a script could be processed by Picketlink versions shipped in Jboss Application Platform 7.2.x and 7.1.x. An attacker could use this to send a malicious script to achieve cross-site scripting and obtain unauthorized information or conduct further attacks.	CVSS3: 5.4	0% Низкий	больше 3 лет назад
BDU:2020-04801 Уязвимость платформы JBoss Enterprise Application Platform, существует из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю осуществлять межсайтовые сценарные атаки и раскрыть защищаемую информацию	CVSS3: 5.4	0% Низкий	больше 6 лет назад

Уязвимостей на страницу