Lucene search
PRIOn knowledge basePRION:CVE-2007-3101HistoryJun 18, 2007 - 10:30 a.m.
Cross site scripting
2007-06-1810:30:00
PRIOn knowledge base
www.prio-n.com
1
Multiple cross-site scripting (XSS) vulnerabilities in certain JSF applications in Apache MyFaces Tomahawk before 1.1.6 allow remote attackers to inject arbitrary web script via the autoscroll parameter, which is injected into Javascript that is sent to the client.
| CPE | Name | Operator | Version |
|---|---|---|---|
| myfaces_tomahawk | le | 1.1.5 |
References
issues.apache.org/jira/secure/ReleaseNote.jspa?version=12312536&styleName=Text&projectId=12310272
labs.idefense.com/intelligence/vulnerabilities/display.php?id=544
osvdb.org/36377
secunia.com/advisories/25618
www.securityfocus.com/bid/24480
www.vupen.com/english/advisories/2007/2212
exchange.xforce.ibmcloud.com/vulnerabilities/34872
Related
nessus
nessus
Apache MyFaces Tomahawk JSF Application autoscroll Multiple XSS
2007-06-19 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2018-11-13 04:46:45
cve
cve
CVE-2007-3101
2007-06-18 10:30:00
nvd
nvd
CVE-2007-3101
2007-06-18 10:30:00
cvelist
cvelist
CVE-2007-3101
2007-06-18 10:00:00
securityvulns
securityvulns