CVE-2009-1553

NONECVSS 0.0

0.0

Multiple cross-site scripting (XSS) vulnerabilities in the Admin Console in Sun GlassFish Enterprise Server 2.1 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) applications/applications.jsf, (2) configuration/configuration.jsf, (3) customMBeans/customMBeans.jsf, (4) resourceNode/resources.jsf, (5) sysnet/registration.jsf, or (6) webService/webServicesGeneral.jsf; or the name parameter to (7) configuration/auditModuleEdit.jsf, (8) configuration/httpListenerEdit.jsf, or (9) resourceNode/jdbcResourceEdit.jsf.

🔗 References (46)

cve@mitrehttp://dsecrg.com/pages/vul/show.php?id=134
cve@mitrehttp://jvn.jp/en/jp/JVN73653977/index.html
cve@mitrehttp://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000027.html
cve@mitrehttp://osvdb.org/54249
cve@mitrehttp://osvdb.org/54250
cve@mitrehttp://osvdb.org/54251
cve@mitrehttp://osvdb.org/54252
cve@mitrehttp://osvdb.org/54253
cve@mitrehttp://osvdb.org/54254
cve@mitrehttp://osvdb.org/54255
cve@mitrehttp://osvdb.org/54256
cve@mitrehttp://osvdb.org/54257
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-26-258528-1
cve@mitrehttp://www.nabble.com/-DSECRG--Sun-Glassfish-Multiple-Security-Vulnerabilities-p22595435.html
cve@mitrehttp://www.nabble.com/Re:--DSECRG--Sun-Glassfish-Multiple-Security-Vulnerabilities-p23002524.html

Is Your Infrastructure Affected by CVE-2009-1553?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1553

📅 Published

🔄 Last Modified

🔗 References (46)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1553?