Lucene search
Veracode Vulnerability DatabaseVERACODE:33567HistoryJan 10, 2022 - 3:29 a.m.
Cross-site Scripting (XSS)
2022-01-1003:29:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
xss
vulnerability
mvcbean-jsp-portlet-archetype
user input
javascript injection
EPSS
0.002
Percentile
57.4%
mvcbean-jsp-portlet-archetype is vulnerable to cross-site scripting. The library does not properly escape the user input firstName and lastName parameters in greeting.jspx, allowing an attacker to inject and execute malicious javascript.
Related
cvelist
cvelist
CVE-2021-36739 XSS vulnerability in the MVCBean JSP portlet maven archetype
2022-01-06 08:50:16
cve
cve
CVE-2021-36739
2022-01-06 09:15:07
github
github
Cross-site Scripting in Apache Pluto
2022-01-08 00:46:21
osv
osv
Cross-site Scripting in Apache Pluto
2022-01-08 00:46:21
cnvd
cnvd
Apache Pluto Cross-Site Scripting Vulnerability (CNVD-2022-02488)
2022-01-08 00:00:00
prion
prion
Cross site scripting
2022-01-06 09:15:00
nvd
nvd
CVE-2021-36739
2022-01-06 09:15:07