CVE-2010-2086 – MyFaces: XSS via state view
https://notcve.org/view.php?id=CVE-2010-2086
Apache MyFaces 1.1.7 and 1.2.8, as used in IBM WebSphere Application Server and other applications, does not properly handle an unencrypted view state, which allows remote attackers to conduct cross-site scripting (XSS) attacks or execute arbitrary Expression Language (EL) statements via vectors that involve modifying the serialized view object. Apache MyFaces v1.1.7 y v1.2.8, como el usado en IBM WebSphere Application Server y otras aplicaciones, no maneja de forma adecuada el estado de vista no cifrada lo que permite a atacantes remotos para conducir ataques de ejecución de secuencias de comandos en sitios cruzados (XSS) o ejecutar código Expression Language (EL) a través de vectores que implican modificar el objeto vista serializada. • http://www.blackhat.com/presentations/bh-dc-10/Byrne_David/BlackHat-DC-2010-Byrne-SGUI-slides.pdf https://www.trustwave.com/spiderlabs/advisories/TWSL2010-001.txt https://access.redhat.com/security/cve/CVE-2010-2086 https://bugzilla.redhat.com/show_bug.cgi?id=598164 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2007-3101 – Apache MyFaces Tomahawk JSF Framework 1.1.5 - 'Autoscroll' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2007-3101
Multiple cross-site scripting (XSS) vulnerabilities in certain JSF applications in Apache MyFaces Tomahawk before 1.1.6 allow remote attackers to inject arbitrary web script via the autoscroll parameter, which is injected into Javascript that is sent to the client. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en ciertas aplicaciones JSF en Apache MyFaces Tomahawk anterior a 1.1.6 permite a atacantes remotos inyectar secuencias de comandos web a través del parámetro autoscroll, el cual es inyectado dentro de un Javascript que es enviado a el cliente. • https://www.exploit-db.com/exploits/30191 http://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12312536&styleName=Text&projectId=12310272 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=544 http://osvdb.org/36377 http://secunia.com/advisories/25618 http://www.securityfocus.com/bid/24480 http://www.vupen.com/english/advisories/2007/2212 https://exchange.xforce.ibmcloud.com/vulnerabilities/34872 •