CVE-2014-3650

State: PUBLISHED · Published: 2022-07-01 · Updated: 2024-08-06 · Assigner: redhat

Description

Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input.

CWE

CWE-79 — CWE-79

Affected

n/a / Jboss Aerogear — v=Jboss Aerogear 1.0.0.final [affected]

CVSS

(none)

References

https://bugzilla.redhat.com/show_bug.cgi?id=1144212 x_refsource_MISC
https://issues.redhat.com/browse/AEROGEAR-5978 x_refsource_MISC

Source

cvelistV5-main/cves/2014/3xxx/CVE-2014-3650.json