CNNVD-202507-2124 Information
Jul 16, 2025
cve
CNNVD ID
CNNVD-202507-2124
Related CVE
- CNNVD Published: 2025-07-16
Description (Chinese)
Eclipse GlassFish是Eclipse基金会的一个开放源码应用服务器。 Eclipse GlassFish 7.0.15版本存在跨站脚本漏洞,该漏洞源于管理控制台中存在反射型跨站脚本攻击风险。
Description (English)
Eclipse GlassFish is an open source application server of the Eclipse Foundation. Eclipse GlassFish 7.0.15 has a cross-site script loophole, which stems from the risk of a reflector-type cross-station script attack in the management control counter.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
Eclipse
Published
2025-07-16
Last Modified
2026-02-24
References
https://gitlab.eclipse.org/security/cve-assignement/-/issues/40
Patch
https://glassfish.org/download.html
Share on: