Lucene search
PRIOn knowledge basePRION:CVE-2021-3536HistoryMay 20, 2021 - 1:15 p.m.
Design/Logic Flaw
2021-05-2013:15:00
PRIOn knowledge base
www.prio-n.com
9
A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in domain mode via the admin console, it is possible to add a payload in the name field, leading to XSS. This affects Confidentiality and Integrity.
| CPE | Name | Operator | Version |
|---|---|---|---|
| data_grid | eq | 8.0 | |
| descision_manager | eq | 7.0 | |
| jboss_a-mq | eq | 7 | |
| jboss_enterprise_application_platform | eq | 7.0 | |
| wildfly | lt | 23.0.2 |
Related
osv
osv
BIT-wildfly-2021-3536
2024-03-06 11:08:47
CVE-2021-3536
2021-05-20 13:15:07
Cross-site Scripting in Wildfly
2021-05-25 18:45:05
github
github
Cross-site Scripting in Wildfly
2021-05-25 18:45:05
nvd
nvd
CVE-2021-3536
2021-05-20 13:15:07
cve
cve
CVE-2021-3536
2021-05-20 13:15:07
veracode
veracode
Cross-site Scripting (XSS)
2021-12-27 00:41:23
redhatcve
redhatcve
CVE-2021-3536
2021-05-05 17:45:45
cvelist
cvelist
CVE-2021-3536
2021-05-20 12:15:09
nessus
nessus
redhat
redhat