EPSS
Percentile
57.4%
The input fields of the Apache Pluto UrlTestPortlet are vulnerable to Cross-Site Scripting (XSS) attacks. Users should migrate to version 3.1.1 of the v3-demo-portlet.war artifact
github.com/apache/portals-pluto
lists.apache.org/thread/x7kt47bf358x8sg9qg02zt0dmdrtow25
nvd.nist.gov/vuln/detail/CVE-2021-36737