ALT-PU-2016-2366-1
Closed vulnerabilities
Published: 2017-09-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-6748
Cross-site scripting (XSS) vulnerability in jsoup before 1.8.3.
Severity: MEDIUM (6.1)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
References:
- [oss-security] 20150828 Re: CVE request: XSS vulnerability in jsoup related to incomplete tags at EOF
- [oss-security] 20150828 Re: CVE request: XSS vulnerability in jsoup related to incomplete tags at EOF
- 76504
- 76504
- https://bugzilla.redhat.com/show_bug.cgi?id=1258310
- https://bugzilla.redhat.com/show_bug.cgi?id=1258310
- https://github.com/jhy/jsoup/pull/582
- https://github.com/jhy/jsoup/pull/582
- https://hibernate.atlassian.net/browse/HV-1012
- https://hibernate.atlassian.net/browse/HV-1012
- https://issues.jboss.org/browse/WFLY-5223?_sscc=t
- https://issues.jboss.org/browse/WFLY-5223?_sscc=t
- [debian-lts-announce] 20200126 [SECURITY] [DLA 2075-1] jsoup security update
- [debian-lts-announce] 20200126 [SECURITY] [DLA 2075-1] jsoup security update