Threat Encyclopedia

Apache.OFBiz.ECommerce.textData.XSS

description-logoDescription

This indicates an attack attempt to exploit a reflected Cross-site Scripting vulnerability in Apache OFBiz.
The vulnerability is due to insufficient validation of requests. A remote attacker may be able to exploit this to execute arbitrary script code within the context of the application.

affected-products-logoAffected Products

Apache OFBiz prior to 16.11.05

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary script code within the context of the application.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

Telemetry logoTelemetry