PT-2025-29769 · Eclipse · Eclipse Glassfish
Claudia Bartolini
+3
·
Published
2025-07-16
·
Updated
2025-07-16
·
CVE-2024-10031
CVSS v4.0
5.8
Medium
| Vector | AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:H/VA:N/SC:H/SI:H/SA:N |
Name of the Vulnerable Software and Affected Versions
Eclipse GlassFish version 7.0.15
Description
Eclipse GlassFish version 7.0.15 is susceptible to Stored Cross-site Scripting attacks. The attacks can be performed by modifying the configuration file within the underlying operating system.
Recommendations
Modify the configuration file to prevent the injection of malicious scripts.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Eclipse Glassfish