EPSS
Percentile
36.1%
JBoss AeroGear has reflected XSS via the password field
[ { "product": "AeroGear", "vendor": "JBoss", "versions": [ { "status": "affected", "version": "through 2014-09-19" } ] } ]
access.redhat.com/security/cve/cve-2014-3649
bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3649