Launch Week Day 1: Announcing Security Design Review
Start for Free
UNKNOWN Maven

Eclipse GlassFish is vulnerable to Stored XSS attacks through configuration file modifications

GHSA-hp97-5x6g-q538 · CVE-2024-10031

Published · Modified

Description

In Eclipse GlassFish version 7.0.15 is possible to perform Stored Cross-site Scripting attacks by modifying the configuration file in the underlying operating system.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes