CVE-2015-0279

Publication date

2015-03-26 14:00:00

Family

redhat

State

PUBLISHED

Description

JBoss RichFaces before 4.5.4 allows remote attackers to inject expression language (EL) expressions and execute arbitrary Java code via the do parameter.