CVE-2008-2462
CVE-2008-2462
Cross-site scripting (XSS) vulnerability in the viewfile documentation command in Caucho Resin before 3.0.25, and 3.1.x before 3.1.4, allows remote attackers to inject arbitrary web script or HTML via the file parameter.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://secunia.com/advisories/30845https://exchange.xforce.ibmcloud.com/vulnerabilities/43367http://www.caucho.com/resin/changes/changes-31.xtp#3.1.4%20-%20Dec%205%2C%202007http://www.kb.cert.org/vuls/id/305208http://www.securityfocus.com/bid/29948http://www.securitytracker.com/id?1020372http://www.vupen.com/english/advisories/2008/1930/references