Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Payara Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2025-1534 - Vulnerability Database
Payara

Payara Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2025-1534

Medium
Reference: CVE-2025-1534
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-1534
Title: Payara Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

CVE-79: Improper Neutralization of Input During Web Page Generation (39Cross-site Scripting39) vulnerability in Payara Platform Payara Server allows : Remote Code Inclusion.This issue affects Payara Server: from 4.1.2.1919.1 before 4.1.2.191.51 from 5.20.0 before 5.68.0 from 6.0.0 before 6.23.0 from 6.2022.1 before 6.2025.2.