Vulnerability Database

296,468

Total vulnerabilities in the database

CVE-2013-4378

Cross-site scripting (XSS) vulnerability in HtmlSessionInformationsReport.java in JavaMelody 1.46 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted X-Forwarded-For header.

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
emeric_vernat / javamelody 1.7 1.7.x
emeric_vernat / javamelody 1.14 1.14.x
emeric_vernat / javamelody 1.35 1.35.x
emeric_vernat / javamelody 1.19 1.19.x
emeric_vernat / javamelody 1.29 1.29.x
emeric_vernat / javamelody 1.28 1.28.x
emeric_vernat / javamelody 1.15 1.15.x
emeric_vernat / javamelody 1.32 1.32.x
emeric_vernat / javamelody 1.39 1.39.x
emeric_vernat / javamelody 1.31 1.31.x
emeric_vernat / javamelody 1.21 1.21.x
emeric_vernat / javamelody 1.26 1.26.x
emeric_vernat / javamelody 1.18 1.18.x
emeric_vernat / javamelody 1.23 1.23.x
emeric_vernat / javamelody 1.33 1.33.x
emeric_vernat / javamelody 1.40 1.40.x
emeric_vernat / javamelody 1.10 1.10.x
emeric_vernat / javamelody 1.45 1.45.x
emeric_vernat / javamelody 1.11 1.11.x
emeric_vernat / javamelody - 1.46.x
emeric_vernat / javamelody 1.38 1.38.x
emeric_vernat / javamelody 1.20 1.20.x
emeric_vernat / javamelody 1.42 1.42.x
emeric_vernat / javamelody 1.16 1.16.x
emeric_vernat / javamelody 1.37 1.37.x
emeric_vernat / javamelody 1.44 1.44.x
emeric_vernat / javamelody 1.43 1.43.x
emeric_vernat / javamelody 1.25 1.25.x
emeric_vernat / javamelody 1.9 1.9.x
emeric_vernat / javamelody 1.30 1.30.x
emeric_vernat / javamelody 1.22 1.22.x
emeric_vernat / javamelody 1.17 1.17.x
emeric_vernat / javamelody 1.8 1.8.x
emeric_vernat / javamelody 1.34 1.34.x
emeric_vernat / javamelody 1.36 1.36.x
emeric_vernat / javamelody 1.12 1.12.x
emeric_vernat / javamelody 1.27 1.27.x
emeric_vernat / javamelody 1.32.1 1.32.1.x
emeric_vernat / javamelody 1.41 1.41.x
emeric_vernat / javamelody 1.13 1.13.x
emeric_vernat / javamelody 1.24 1.24.x
emeric_vernat / javamelody 1.6 1.6.x
Maven icon net.bull.javamelody / javamelody-core - 1.46.0