Vulnerability Database

Published: Jun 15, 2018
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-12432" target="_blank" rel="noopener"> CVE-2018-12432
GHSA: <a href="https://github.com/advisories/GHSA-g66q-grxc-64j3" target="_blank" rel="noopener"> GHSA-g66q-grxc-64j3
Severity: Medium
Exploit:

296,468

Total vulnerabilities in the database

JavaMelody through 1.60.0 has XSS via the counter parameter in a clear_counter action to the /monitoring URI.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
javamelody_project / javamelody	-	1.60.0.x
net.bull.javamelody / javamelody-core	-	1.61.0

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.