CVE-2009-1524

Published: May 5, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Mort Bay Jetty before 6.1.17 allows remote attackers to inject arbitrary web script or HTML via a directory listing request containing a ; (semicolon) character.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

34800

vdb-entry

x_refsource_BID

ADV-2010-1792

vdb-entry

x_refsource_VUPEN

SSRT100184

vendor-advisory

x_refsource_HP

https://bugzilla.redhat.com/show_bug.cgi?id=499867

x_refsource_CONFIRM

34975

third-party-advisory

x_refsource_SECUNIA

40553

third-party-advisory

x_refsource_SECUNIA

http://jira.codehaus.org/browse/JETTY-980

x_refsource_CONFIRM

HPSBMA02553

vendor-advisory

x_refsource_HP

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-1524

Description

Affected Products

References