VYPR
Moderate severityNVD Advisory· Published Mar 11, 2008· Updated Jun 16, 2026

CVE-2008-1285

CVE-2008-1285

Description

Cross-site scripting (XSS) vulnerability in Sun Java Server Faces (JSF) 1.2 before 1.2_08 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
com.sun.faces:jsf-apiMaven
< 1.2.081.2.08

Affected products

2

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.