We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Payara Platform Payara Server (Admin Console modules) allows Remote Code Inclusion.This issue affects Payara Server: from 5.20.0 before 5.68.0, from 6.0.0 before 6.19.0, from 6.2022.1 before 6.2024.10, from 4.1.2.191.1 before 4.1.2.191.51.
Reserved 2024-08-27 | Published 2024-10-08 | Updated 2024-10-08 | Assigner PayaraCWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
Marco Ventura
Claudia Bartolini
Andrea Carlo Maria Dattola
Debora Esposito
Massimiliano Broli
docs.payara.fish/.../Release Notes/Release Notes 6.19.0.html
docs.payara.fish/...lease Notes/Release Notes 6.2024.10.html
docs.payara.fish/.../Release Notes/Release Notes 5.68.0.html
Support options