VYPR
Moderate severityNVD Advisory· Published Dec 5, 2007· Updated Jun 16, 2026

CVE-2007-5613

CVE-2007-5613

Description

Cross-site scripting (XSS) vulnerability in Dump Servlet in Mortbay Jetty before 6.1.6rc1 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters and cookies.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.mortbay.jetty:jettyMaven
< 6.1.66.1.6

Affected products

12
  • Eclipse/Jetty11 versions
    cpe:2.3:a:mortbay_jetty:jetty:1.0:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:mortbay_jetty:jetty:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:5:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:6:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:6.1:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 6.1.6

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.