Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2000-1053

Allaire JRun 2.3.3 server allows remote attackers to compile and execute JSP code by inserting it via a cross-site scripting (CSS) attack and directly calling the com.livesoftware.jrun.plugins.JSP JSP servlet.

  • Published: Dec 11, 2000
  • Updated: Apr 13, 2023
  • CVE: CVE-2000-1053
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
macromedia / jrun 2.3.x 2.3.x.x