CVE-2009-3579
Mortbay Jetty - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the CookieDump.java sample application in Mort Bay Jetty 6.1.19 and 6.1.20 allows remote attackers to inject arbitrary web script or HTML via the Value parameter in a GET request to cookie/.
Scores
EPSS
0.0013
EPSS Percentile
32.3%
Classification
CWE
CWE-79
Status
published
Affected Products (3)
mortbay/jetty
mortbay/jetty
n/a/n/a
Timeline
Published
Oct 07, 2009
Tracked Since
Feb 18, 2026