VYPR

JBoss AeroGear

by Red Hat

CVEs (2)

  • CVE-2014-3650Jul 1, 2022
    risk 0.00cvss epss 0.01

    Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input.

  • CVE-2014-3649Nov 4, 2019
    risk 0.00cvss epss 0.01

    JBoss AeroGear has reflected XSS via the password field