Description

Cross-site scripting (XSS) vulnerability in the JMX console in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2011-4575

Related Vulnerabilities

XWiki CVE-2023-40573 Vulnerability (CVE-2023-40573)

WordPress Plugin Pagination by BestWebSoft Cross-Site Scripting (1.0.6)

ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-23948)

WordPress Plugin JoomSport-for Sports: Team & League, Football, Hockey & more Multiple SQL Injection Vulnerabilities (5.2.5)

WordPress Improper Input Validation Vulnerability (CVE-2009-2431)

Severity

Medium

Classification

CVE-2011-4575 CWE-20

Tags

Missing Update Known Vulnerabilities