CVE-2014-3650

Summary

Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input.

Affected Software

VendorProductVersion RangeStatus
n/aJboss AerogearJboss Aerogear 1.0.0.finalaffected

Weaknesses

  • CWE-79: CWE-79

ADP Enrichment

CVE Program Container

Additional References

References