UBUNTU-CVE-2009-1553

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/CVE-2009-1553
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2009/UBUNTU-CVE-2009-1553.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2009-1553
Upstream
  • CVE-2009-1553
Withdrawn
2025-08-01T19:34:09Z
Published
2009-05-06T16:30:00Z
Modified
2025-08-01T04:49:07Z
Severity
  • Ubuntu - low
Summary
[none]
Details

Multiple cross-site scripting (XSS) vulnerabilities in the Admin Console in Sun GlassFish Enterprise Server 2.1 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) applications/applications.jsf, (2) configuration/configuration.jsf, (3) customMBeans/customMBeans.jsf, (4) resourceNode/resources.jsf, (5) sysnet/registration.jsf, or (6) webService/webServicesGeneral.jsf; or the name parameter to (7) configuration/auditModuleEdit.jsf, (8) configuration/httpListenerEdit.jsf, or (9) resourceNode/jdbcResourceEdit.jsf.

References

Affected packages

Ubuntu:Pro:16.04:LTS / glassfish

Package

Name
glassfish
Purl
pkg:deb/ubuntu/glassfish@1:2.1.1-b31g+dfsg1-3?arch=source&distro=esm-apps/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:2.*
1:2.1.1-b31g+dfsg1-3

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2009/UBUNTU-CVE-2009-1553.json"

Ubuntu:Pro:18.04:LTS / glassfish

Package

Name
glassfish
Purl
pkg:deb/ubuntu/glassfish@1:2.1.1-b31g+dfsg1-4?arch=source&distro=esm-apps/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:2.*
1:2.1.1-b31g+dfsg1-4

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2009/UBUNTU-CVE-2009-1553.json"