Cross-site scripting (XSS) vulnerability in Jetty JSP servlet engine allows remote malicious users to insert arbitrary HTML or script via an HTTP request to a .jsp file whose name contains the malicious script and some encoded linefeed characters (%0a).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jetty jetty 4.1.0_rc4 |