Felix Http Webconsole Plugin

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-27867 MEDIUM PATCH This Month

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Felix HTTP Webconsole Plugin.X through 1.2.0. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Apache XSS Felix Http Webconsole Plugin

NVD

CVSS 3.1

5.6

EPSS

0.4%

CVE-2025-27867

EPSS 0% CVSS 5.6

MEDIUM PATCH This Month

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Felix HTTP Webconsole Plugin.X through 1.2.0. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Apache XSS Felix Http Webconsole Plugin

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy