CVE-2009-4267
published 2018-02-19CVE-2009-4267: The console in Apache jUDDI 3.0.0 does not properly escape line feeds, which allows remote authenticated users to spoof log entries via the numRows parameter.
medium6.5CVSS 3.0
AVNACLPRLUINSUCNIHAN
The console in Apache jUDDI 3.0.0 does not properly escape line feeds, which allows remote authenticated users to spoof log entries via the numRows parameter.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | juddi | — | — |
| apache_software_foundation | juddi | — | — |