Lucene search
PRIOn knowledge basePRION:CVE-2009-1275HistoryApr 09, 2009 - 3:08 p.m.
Cross site scripting
2009-04-0915:08:00
PRIOn knowledge base
www.prio-n.com
2
Apache Tiles 2.1 before 2.1.2, as used in Apache Struts and other products, evaluates Expression Language (EL) expressions twice in certain circumstances, which allows remote attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information via unspecified vectors, related to the (1) tiles:putAttribute and (2) tiles:insertTemplate JSP tags.
Related
osv
osv
Apache Tiles Vulnerable to XSS via EL Expression Injection
2022-05-02 03:23:16
cvelist
cvelist
CVE-2009-1275
2009-04-09 15:00:00
nvd
nvd
CVE-2009-1275
2009-04-09 15:08:35
cve
cve
CVE-2009-1275
2009-04-09 15:08:35
openvas
openvas
Apache Tiles Multiple XSS Vulnerabilities
2009-04-28 00:00:00
Apache Tiles Multiple XSS Vulnerability
2009-04-28 00:00:00
github
github
Apache Tiles Vulnerable to XSS via EL Expression Injection
2022-05-02 03:23:16
debiancve
debiancve
CVE-2009-1275
2009-04-09 15:08:35
veracode
veracode
Cross-Site Scripting (XSS)
2018-11-09 00:58:46