CVE-2011-4343

Information disclosure vulnerability in Apache MyFaces Core 2.0.1 through 2.0.10 and 2.1.0 through 2.1.4 allows remote attackers to inject EL expressions via crafted parameters.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:apache:myfaces:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:myfaces:2.0.6:*:*:*:*:*:*:*

Information

Published : 2017-08-08 14:29

Updated : 2017-11-01 18:29


NVD link : CVE-2011-4343

Mitre link : CVE-2011-4343


JSON object : View

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

dedicated server usa

Products Affected

apache

  • myfaces