CVE-2014-0248
- EPSS 2.35%
- Published 07.07.2014 14:55:03
- Last modified 12.04.2025 10:46:40
org.jboss.seam.web.AuthenticationFilter in Red Hat JBoss Web Framework Kit 2.5.0, JBoss Enterprise Application Platform (JBEAP) 5.2.0, and JBoss Enterprise Web Platform (JBEWP) 5.2.0 allows remote attackers to execute arbitrary code via a crafted aut...
CVE-2014-0149
- EPSS 0.26%
- Published 05.05.2014 17:06:05
- Last modified 12.04.2025 10:46:40
Multiple cross-site scripting (XSS) vulnerabilities in Red Hat JBoss Web Framework Kit 2.5.0 allow remote attackers to inject arbitrary web script or HTML via a (1) parameter or (2) id name.
CVE-2014-0086
- EPSS 0.64%
- Published 31.03.2014 14:58:19
- Last modified 12.04.2025 10:46:40
The doFilter function in webapp/PushHandlerFilter.java in JBoss RichFaces 4.3.4, 4.3.5, and 5.x allows remote attackers to cause a denial of service (memory consumption and out-of-memory error) via a large number of malformed atmosphere push requests...
CVE-2013-2165
- EPSS 25.71%
- Published 23.07.2013 11:03:11
- Last modified 11.04.2025 00:51:21
ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red Hat JBoss Web Platform through 5.2.0, Red Hat JBoss Enterprise Application Platform through 4.3.0 CP10 and 5.x through 5.2.0...