Lucene search
MitreCVELIST:CVE-2009-1275HistoryApr 09, 2009 - 3:00 p.m.
CVE-2009-1275
2009-04-0915:00:00
mitre
www.cve.org
Apache Tiles 2.1 before 2.1.2, as used in Apache Struts and other products, evaluates Expression Language (EL) expressions twice in certain circumstances, which allows remote attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information via unspecified vectors, related to the (1) tiles:putAttribute and (2) tiles:insertTemplate JSP tags.
Related
osv
osv
Apache Tiles Vulnerable to XSS via EL Expression Injection
2022-05-02 03:23:16
nvd
nvd
CVE-2009-1275
2009-04-09 15:08:35
cve
cve
CVE-2009-1275
2009-04-09 15:08:35
openvas
openvas
Apache Tiles Multiple XSS Vulnerabilities
2009-04-28 00:00:00
Apache Tiles Multiple XSS Vulnerability
2009-04-28 00:00:00
github
github
Apache Tiles Vulnerable to XSS via EL Expression Injection
2022-05-02 03:23:16
debiancve
debiancve
CVE-2009-1275
2009-04-09 15:08:35
veracode
veracode
Cross-Site Scripting (XSS)
2018-11-09 00:58:46
prion
prion
Cross site scripting
2009-04-09 15:08:00