Digital Security Research Group [DSecRG] Advisory #DSECRG-09-034 Original advisory: http://dsecrg.com/pages/vul/show.php?id=134 Application: Sun Glassfish Enterprise Server Versions Affected: 2.1 Vendor URL: https://glassfish.dev.java.net/ Bug: Multiple Linked XSS vulnerabilities Exploits: YES Reported: 19.03.2009 Vendor response: 20.03.2009 Solution: YES Date of Public Advisory: 05.05.2009 Author: Digital Security Research Group [DSecRG] (research [at] dsecrg [dot] com) Description *********** Glassfish Enterprise Server Admin Console has multiple linked XSS vulnerabilities. Details ******* Using this vulnerability attacker can steal admin's cookie and then authentificate as administrator or perform certain administrative actions. 1. Multiple Linked XSS vulnerabilities. Many pages have typical XSS vulnerability. Attacker can inject XSS in URL string. Example: http://[server]/applications/applications.jsf?');};alert("DSecRG_XSS");