Web App Vulnerabilities

1. Introduction The remote host contains a web application that uses Apache Struts, a Java-based MVC framework. This vulnerability indicates...

1. Introduction The vulnerability “Apache Struts struts-cookbook processSimple.do message Paramet…” is a cross-site scripting (XSS) flaw in the demonstration application...

1. Introduction The vulnerability “Apache Struts struts-examples upload-submit.do ‘theText’ Param…” is a cross-site scripting (XSS) flaw in the Struts framework’s...

1. Introduction The Apache Tomcat SendMailServlet sendmail.jsp ‘mailfrom’ parameter is vulnerable to a cross-site scripting (XSS) attack. This allows an...

1. Introduction Apache Tomcat Site Enumeration refers to the retrieval of domain names and IP addresses from Apache Tomcat configuration...

1. Introduction The Apache Tomcat Snoop Servlet Remote Information Disclosure vulnerability allows an attacker to gain sensitive information about a...

1. Introduction The Apache Tomcat snoop.jsp URI XSS vulnerability allows a remote attacker to inject malicious script into a web...

1. Introduction Apache Unomi Detection indicates that the web interface for Apache Unomi is accessible on a remote host. This...

1. Introduction The scan detected that some XHR requests seem to call an API. This indicates potential exposure of internal...

1. Introduction API Key Authentication Succeeded indicates that a scan successfully authenticated against a web application using an API key....