Multiple cross-site scripting (XSS) vulnerabilities in messages.jsp in AppFuse prior to 2.0 Final allow remote malicious users to inject arbitrary web script or HTML via unspecified input that is recorded in (1) success or (2) error messages.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
appfuse appfuse 2.0-rc1 |