Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-4pvw-g9fx-594r: Cross-site Scripting in healthcheck webconsole plugin

An improper neutralization of input during web page generation (‘Cross-site Scripting’) [CWE-79] vulnerability in Apache Felix Healthcheck Webconsole Plugin version 2.0.2 and prior may allow an attacker to perform a reflected cross-site scripting (XSS) attack.

Upgrade to Apache Felix Healthcheck Webconsole Plugin 2.1.0 or higher.

ghsa
#xss#vulnerability#web#apache#git

Cross-site Scripting in healthcheck webconsole plugin

Moderate severity GitHub Reviewed Published Jul 25, 2023 to the GitHub Advisory Database • Updated Jul 26, 2023

Related news

CVE-2023-38435

An improper neutralization of input during web page generation ('Cross-site Scripting') [CWE-79] vulnerability in Apache Felix Healthcheck Webconsole Plugin version 2.0.2 and prior may allow an attacker to perform a reflected cross-site scripting (XSS) attack. Upgrade to Apache Felix Healthcheck Webconsole Plugin 2.1.0 or higher.

ghsa: Latest News

GHSA-hqmp-g7ph-x543: TunnelVision - decloaking VPNs using DHCP