Summary
The running Apache OFBiz is prone to the following security issue OFBiz Search_String Parameter HTML Injection Vulnerability OFBiz Unspecified HTML Injection Vulnerability
Solution
Download the latest release form Apache Software Foundation (OFBiz) website
Severity
Classification
-
CVE CVE-2006-6587, CVE-2006-6589 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apache Tomcat Information Disclosure Vulnerability
- Apache Tomcat RemoteFilterValve Security Bypass Vulnerability
- Apache Archiva Cross Site Request Forgery Vulnerability
- APC PowerChute Network Shutdown 'security/applet' Cross Site Scripting Vulnerability
- A4Desk Event Calendar 'eventid' Parameter SQL Injection Vulnerability