Description
Cross-site scripting (XSS) vulnerability in the viewfile documentation command in Caucho Resin before 3.0.25, and 3.1.x before 3.1.4, allows remote attackers to inject arbitrary web script or HTML via the file parameter.
Remediation
References
Related Vulnerabilities
ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9407)
Jenkins CVE-2013-0158 Vulnerability (CVE-2013-0158)
WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.19)
WordPress Plugin Ad Invalid Click Protector (AICP) Malicious Code (1.2.9)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5320)