This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Sun First view 2009-05-26
Product Java System Portal Server Last view 2009-12-03
Version 6.3.1 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:sun:java_system_portal_server

Activity : Overall

Related : CVE

  Date Alert Description
4.3 2009-12-03 CVE-2009-4187

Multiple cross-site scripting (XSS) vulnerabilities in the Gateway component in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3 2009-05-26 CVE-2009-1796

Cross-site scripting (XSS) vulnerability in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to an error page.

CWE : Common Weakness Enumeration

%idName
100% (2) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')

Open Source Vulnerability Database (OSVDB)

id Description
60590 Sun Java System Portal Server Gateway Component Unspecified XSS
54705 Sun Java System Portal Server Unspecified XSS

OpenVAS Exploits

id Description
2010-08-06 Name : Sun Java System Portal Server Multiple Cross Site Scripting Vulnerabilities
File : nvt/gb_sun_java_system_portal_server_xss_vuln.nasl