Cross-site scripting (XSS) vulnerability in Direct Web Remoting (DWR) up to and including 2.0.10 and 3.x up to and including 3.0.RC2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
directwebremoting direct web remoting 3.0 |
||
directwebremoting direct web remoting |