Shodan
Vulnerabilities
Vulnerable Software
Eclipse:  >> Mojarra  >> 2.3.6  Security Vulnerabilities
CVE-2020-6950
Directory traversal in Eclipse Mojarra before 2.3.14 allows attackers to read arbitrary files via the loc parameter or con parameter.
CVSS Score
6.5
EPSS Score
0.579
Published
2021-06-02
CVE-2019-17091
faces/context/PartialViewContextImpl.java in Eclipse Mojarra, as used in Mojarra for Eclipse EE4J before 2.3.10 and Mojarra JavaServer Faces before 2.2.20, allows Reflected XSS because a client window field is mishandled.
CVSS Score
6.1
EPSS Score
0.066
Published
2019-10-02
CVE-2018-14371
The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications.
CVSS Score
7.5
EPSS Score
0.026
Published
2018-07-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved