CVE-2016-6812

MEDIUM

Apache CXF < 3.0.12 and 3.1.x < 3.1.9 - Cross-Site Scripting via Matrix Parameters in HTTP Transport Module

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-6812. PoCs published by shoucheng3.

AI-analyzed exploit summary The repository appears to be a partial or incomplete snapshot of the Apache CXF project, lacking any exploit code or technical analysis specific to CVE-2016-6812. It contains standard project files (e.g., GitHub workflows, README) but no PoC or vulnerability details.

Description

The HTTP transport module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 uses FormattedServiceListWriter to provide an HTML page which lists the names and absolute URL addresses of the available service endpoints. The module calculates the base URL using the current HttpServletRequest. The calculated base URL is used by FormattedServiceListWriter to build the service endpoint absolute URLs. If the unexpected matrix parameters have been injected into the request URL then these matrix parameters will find their way back to the client in the services list page which represents an XSS risk to the client.

Exploits (1)

nomisec STUB

by shoucheng3 · poc

https://github.com/shoucheng3/asf__cxf_CVE-2016-6812_3-0-11

View Code ZIP pw:eip

The repository appears to be a partial or incomplete snapshot of the Apache CXF project, lacking any exploit code or technical analysis specific to CVE-2016-6812. It contains standard project files (e.g., GitHub workflows, README) but no PoC or vulnerability details.

Classification

Stub 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Apache CXF

No auth needed

devstral-2 · analyzed Feb 18, 2026 Full analysis →