PT-2007-6624 · Mort Bay · Mort Bay Jetty

Tomasz Kuczynski

·

Publicado

2007-12-05

·

Atualizado

2022-05-01

·

CVE-2007-5613

CVSS v3.1

5.3

Média

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions Mortbay Jetty versions prior to 6.1.6rc1
Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via unspecified parameters and cookies.
Recommendations For Mortbay Jetty versions prior to 6.1.6rc1, update to version 6.1.6rc1 or later to resolve the issue.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2007-5613
GHSA-8H77-9VH5-HW5G

Produtos afetados

Mort Bay Jetty