org.apache.continuum:continuum-webapp@1.3.6 vulnerabilities
-
latest version
1.4.2
-
latest non vulnerable version
-
first published
16 years ago
-
latest version published
10 years ago
-
licenses detected
- [1.2,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.continuum:continuum-webapp package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.continuum:continuum-webapp is a Continuous Integration and Build Server Affected versions of this package are vulnerable to Cross-site Scripting (XSS). It allows remote attackers to inject arbitrary web script or HTML via a crafted parameter, related to the autoIncludeParameters setting for the extremecomponents table. How to fix Cross-site Scripting (XSS)? Upgrade |
[1.2,1.3.7)
|