Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ISO-8859-1 encoder in Resin Pro before 4.0.40 does not properly perform Unicode transformations, which allows remote attackers to bypass intended text restrictions via crafted characters, as demonstrated by bypassing an XSS protection mechanism.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Caucho Resin Professional 安全漏洞
Vulnerability Description
Caucho Resin是美国Caucho公司为需要提速和可扩展的高流量网站提供的一款Java应用服务器。Resin Professional版本拥有Cache功能,支持缓存和负载均衡。 Caucho Resin Professional 4.0.40之前版本的ISO-8859-1编码器中存在安全漏洞,该漏洞源于程序没有正确执行Unicode转换。远程攻击者可借助特制的字符利用该漏洞绕过既定文本限制。
CVSS Information
N/A
Vulnerability Type
N/A