Description
Cross-site scripting (XSS) vulnerability in ThemeServlet.java in Sun Woodstock 4.2, as used in Sun GlassFish Enterprise Server and other products, allows remote attackers to inject arbitrary web script or HTML via a UTF-7 string in the PATH_INFO, which is displayed on the 404 error page, as demonstrated by the PATH_INFO to theme/META-INF.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by DSecRG · textremotemultiple
https://www.exploit-db.com/exploits/32987
References (9)
Core 9
Core References
Exploit mailing-list
x_refsource_mlist
http://www.nabble.com/-DSECRG--Sun-Glassfish-Multiple-Security-Vulnerabilities-p22595435.html
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/34829
Various Sources mailing-list
x_refsource_mlist
http://www.nabble.com/Re:--DSECRG--Sun-Glassfish-Multiple-Security-Vulnerabilities-p23002524.html
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/503239/100/0/threaded
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35006
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/54220
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/50336
Patch, Vendor Advisory mailing-list
x_refsource_mlist
https://woodstock.dev.java.net/servlets/ReadMsg?list=cvs&msgNo=4041
Exploit x_refsource_misc
http://dsecrg.com/pages/vul/show.php?id=138
Scores
EPSS
0.0156
EPSS Percentile
81.5%
Details
CWE
CWE-79
Status
published
Products (1)
sun/woodstock
4.2
Published
May 06, 2009
Tracked Since
Feb 18, 2026