Back to search
CVE-2012-5920
Published: Nov 20, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 through 2.5 Final, as used in JBoss Operations Network (ON) 3.1.1 and possibly other products, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2012-4563.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
web-toolkit-unspecified-xss(80331)
vdb-entry
x_refsource_XF
https://developers.google.com/web-toolkit/release-notes#Release_Notes_2_4_0
x_refsource_CONFIRM
57538
vdb-entry
x_refsource_BID
RHSA-2013:0187
vendor-advisory
x_refsource_REDHAT
[oss-security] 20121030 Re: CVE request: XSS is Google Web Toolkit (GWT)
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now