Latest Vulnerabilities and Exploits



CVE ID:

CVE-2021-3536

Details:

A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in domain mode via the admin console, it is possible to add a payload in the name field, leading to XSS. This affects Confidentiality and Integrity.

References:

:https://bugzilla.redhat.com/show_bug.cgi?id=1948001
:https://bugzilla.redhat.com/show_bug.cgi?id=1948001

ZeroDayLab Assigned Tags:

CROSS SITE SCRIPTING - What is Cross Site Scripting?