Mortbay : Security Vulnerabilities, CVEs, Published In 2009 (XSS)
Cross-site scripting (XSS) vulnerability in the CookieDump.java sample application in Mort Bay Jetty 6.1.19 and 6.1.20 allows remote attackers to inject arbitrary web script or HTML via the Value parameter in a GET request to cookie/.
Max CVSS
4.3
EPSS Score
0.20%
Published
2009-10-07
Updated
2018-10-10
Cross-site scripting (XSS) vulnerability in Mort Bay Jetty before 6.1.17 allows remote attackers to inject arbitrary web script or HTML via a directory listing request containing a ; (semicolon) character.
Max CVSS
4.3
EPSS Score
0.28%
Published
2009-05-05
Updated
2010-07-20
2 vulnerabilities found