Lucene search
ApacheCVELIST:CVE-2021-36739HistoryJan 06, 2022 - 8:50 a.m.
CVE-2021-36739 XSS vulnerability in the MVCBean JSP portlet maven archetype
2022-01-0608:50:16
CWE-79
apache
www.cve.org
2
cve-2021-36739
cross-site scripting
apache pluto 3.1.0
EPSS
0.002
Percentile
57.4%
The “first name” and “last name” fields of the Apache Pluto 3.1.0 MVCBean JSP portlet maven archetype are vulnerable to Cross-Site Scripting (XSS) attacks.
CNA Affected
[
{
"product": "Apache Portals",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "org.apache.portals.pluto.archetype:mvcbean-jsp-portlet-archetype 3.1.0"
}
]
}
]Related
cve
cve
CVE-2021-36739
2022-01-06 09:15:07
veracode
veracode
Cross-site Scripting (XSS)
2022-01-10 03:29:59
github
github
Cross-site Scripting in Apache Pluto
2022-01-08 00:46:21
osv
osv
Cross-site Scripting in Apache Pluto
2022-01-08 00:46:21
cnvd
cnvd
Apache Pluto Cross-Site Scripting Vulnerability (CNVD-2022-02488)
2022-01-08 00:00:00
prion
prion
Cross site scripting
2022-01-06 09:15:00
nvd
nvd
CVE-2021-36739
2022-01-06 09:15:07