CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2008-5098
https://notcve.org/view.php?id=CVE-2008-5098
Cross-site scripting (XSS) vulnerability in Sun Java System Messaging Server 6.2 and 6.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2007-2904. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Sun Java System Messaging Server 6.2 y 6.3, permite a atacantes remotos inyectar secuencias de comandos Web o HTML de su elección a través de vectores no especificados. Se trata de una vulnerabilidad diferente de CVE-2007-2904. • http://osvdb.org/49836 http://secunia.com/advisories/32670 http://securitytracker.com/id?1021223 http://sunsolve.sun.com/search/document.do?assetkey=1-26-242186-1 http://www.securityfocus.com/bid/32285 http://www.vupen.com/english/advisories/2008/3152 https://exchange.xforce.ibmcloud.com/vulnerabilities/46583 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 1%CPEs: 4EXPL: 0CVE-2007-2904
https://notcve.org/view.php?id=CVE-2007-2904
Cross-site scripting (XSS) vulnerability in Sun Java System Messaging Server 6.0 through 6.3, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly a related issue to CVE-2006-5653. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Sun Java System Messaging Server 6.0 hasta 6.3, cuando se usa Internet Explorer, permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de vectores no especificados, posiblemente un problema relacionado con CVE-2006-5653. • http://osvdb.org/38146 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102909-1 http://www.securitytracker.com/id?1018106 •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2006-5486
https://notcve.org/view.php?id=CVE-2006-5486
Cross-site scripting (XSS) vulnerability in Webmail in Sun Java System Messaging Server 6.0 through 6.2 and iPlanet Messaging Server 5.2 allows remote attackers to execute arbitrary Javascript via crafted messages. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Webmail en Sun Java System Messaging Server 6.0 hasta 6.2 y en iPlanet Messaging Server 5.2 permite a atacantes remotos ejecutar código Javascript de su elección mediante mensajes artesanales. • http://secunia.com/advisories/22575 http://securitytracker.com/id?1017113 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102497-1 http://www.securityfocus.com/bid/20708 http://www.vupen.com/english/advisories/2006/4183 https://exchange.xforce.ibmcloud.com/vulnerabilities/29806 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •