[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2006-0254":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":62,"duplicate_of":9,"upstream":64,"downstream":65,"duplicates":72,"related":73,"reserved_at":9,"published_at":74,"modified_at":75,"state":76,"summary":77,"references_raw":85,"kevs":168,"epss":169,"epss_history":172,"metrics":394,"affected":399},"CVE-2006-0254","Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) time parameter to cal2.jsp and (2) any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],[19,28,33,38,53],{"_key":20,"name":21,"source":22,"url":23,"maturity":24,"reliability_score":25,"verified":26,"type":9,"platforms":27,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_28185CB3FFCB5F1C","Exploit Reference (oliverkarow.de)","reference","http://www.oliverkarow.de/research/geronimo_css.txt","unknown",0.2,false,[],{"_key":29,"name":30,"source":22,"url":31,"maturity":24,"reliability_score":25,"verified":26,"type":9,"platforms":32,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_C58564133E84C3DB","Exploit Reference (securityfocus.com)","http://www.securityfocus.com/bid/16260",[],{"_key":34,"name":35,"source":22,"url":36,"maturity":24,"reliability_score":25,"verified":26,"type":9,"platforms":37,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_0DA562BA7238F11D","Exploit Reference (issues.apache.org)","http://issues.apache.org/jira/browse/GERONIMO-1474",[],{"_key":39,"name":40,"source":41,"url":42,"maturity":43,"reliability_score":44,"verified":45,"type":46,"platforms":47,"requires_auth":9,"exploitdb":49,"metasploit":9},"27096","Apache Geronimo 1.0 - Error Page Cross-Site Scripting","exploit-database","https://www.exploit-db.com/exploits/27096","weaponized",0.8,true,"remote",[48],"multiple",{"verified":45,"type":46,"platform":48,"file":50,"codes":51},"exploits/multiple/remote/27096.txt",[7,52],"OSVDB-22459",{"_key":54,"name":55,"source":41,"url":56,"maturity":43,"reliability_score":44,"verified":45,"type":46,"platforms":57,"requires_auth":9,"exploitdb":58,"metasploit":9},"27095","Apache Tomcat / Geronimo 1.0 - 'Sample Script cal2.jsp?time' Cross-Site Scripting","https://www.exploit-db.com/exploits/27095",[48],{"verified":45,"type":46,"platform":48,"file":59,"codes":60},"exploits/multiple/remote/27095.txt",[7,61],"OSVDB-22458",[63],"GHSA-2jxh-3cx8-xw65",[],[66,68,70],{"_key":67},"RHSA-2008:0261",{"_key":69},"RHSA-2008:0524",{"_key":71},"RHSA-2008:0630",[],[],"2006-01-18T02:00:00.000Z","2024-08-07T16:25:34.111Z","Modified",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":78,"epss_score":79,"severity":80,"severity_score":81,"severity_version":82,"severity_source":83,"severity_vector":84,"severity_status":76},"high",0.45321,"medium",4.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:N/I:P/A:N",[86,95,101,106,111,116,121,126,130,136,140,143,147,152,156,160,164],{"url":87,"sources":88,"tags":91},"http://rhn.redhat.com/errata/RHSA-2008-0630.html",[89,83,90],"cve.org","osv_maven",[92,93,94],"Vendor Advisory","X Refsource REDHAT","WEB",{"url":96,"sources":97,"tags":98},"http://secunia.com/advisories/31493",[89,83,90],[99,100,94],"Third Party Advisory","X Refsource SECUNIA",{"url":23,"sources":102,"tags":103},[89,83,90],[104,105,92,94],"X Refsource MISC","Exploit",{"url":107,"sources":108,"tags":109},"https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12310181&styleName=Html&projectId=10220&Create=Create",[89,83,90],[110,94],"X Refsource CONFIRM",{"url":31,"sources":112,"tags":113},[89,83,90],[114,115,105,94],"VDB Entry","X Refsource BID",{"url":117,"sources":118,"tags":119},"http://www.vupen.com/english/advisories/2006/0217",[89,83,90],[114,120,94],"X Refsource VUPEN",{"url":122,"sources":123,"tags":124},"https://exchange.xforce.ibmcloud.com/vulnerabilities/24159",[89,83,90],[114,125,94],"X Refsource XF",{"url":127,"sources":128,"tags":129},"https://exchange.xforce.ibmcloud.com/vulnerabilities/24158",[89,83,90],[114,125,94],{"url":131,"sources":132,"tags":133},"http://www.securityfocus.com/archive/1/421996/100/0/threaded",[89,83,90],[134,135,94],"Mailing List","X Refsource BUGTRAQ",{"url":137,"sources":138,"tags":139},"http://www.redhat.com/support/errata/RHSA-2008-0261.html",[89,83,90],[92,93,94],{"url":36,"sources":141,"tags":142},[89,83,90],[104,105,92,94],{"url":144,"sources":145,"tags":146},"http://secunia.com/advisories/18485",[89,83,90],[99,100,92,94],{"url":148,"sources":149,"tags":150},"https://nvd.nist.gov/vuln/detail/CVE-2006-0254",[90],[151],"Advisory",{"url":153,"sources":154,"tags":155},"https://geronimo.apache.org/GMOxDOC11/release-notes-11txt.html",[90],[94],{"url":157,"sources":158,"tags":159},"https://issues.apache.org/jira/secure/attachment/12322088/GERONIMO-1474.patch",[90],[94],{"url":161,"sources":162,"tags":163},"http://svn.apache.org/viewvc/geronimo",[90],[94],{"url":165,"sources":166,"tags":167},"http://svn.apache.org/viewvc?view=revision&revision=372322",[90],[94],[],{"date":170,"score":79,"percentile":171},"2026-06-04",0.97669,[173,176,178,181,184,186,188,190,192,195,198,200,202,204,206,208,210,213,215,217,219,221,223,225,227,229,231,234,237,240,242,245,247,249,251,253,255,257,260,263,266,268,271,274,277,279,281,283,286,289,291,293,296,299,302,304,307,309,312,315,317,319,322,325,328,330,333,336,339,341,343,346,349,352,355,357,360,362,365,367,369,371,374,377,379,381,384,387,389,391],{"date":174,"score":79,"percentile":175},"2025-11-04",0.97449,{"date":177,"score":79,"percentile":175},"2025-11-05",{"date":179,"score":79,"percentile":180},"2025-11-06",0.97448,{"date":182,"score":79,"percentile":183},"2025-11-07",0.9745,{"date":185,"score":79,"percentile":180},"2025-11-08",{"date":187,"score":79,"percentile":180},"2025-11-09",{"date":189,"score":79,"percentile":175},"2025-11-10",{"date":191,"score":79,"percentile":175},"2025-11-11",{"date":193,"score":79,"percentile":194},"2025-11-12",0.97452,{"date":196,"score":79,"percentile":197},"2025-11-13",0.97451,{"date":199,"score":79,"percentile":194},"2025-11-14",{"date":201,"score":79,"percentile":183},"2025-11-15",{"date":203,"score":79,"percentile":197},"2025-11-16",{"date":205,"score":79,"percentile":197},"2025-11-17",{"date":207,"score":79,"percentile":197},"2025-11-18",{"date":209,"score":79,"percentile":197},"2025-11-19",{"date":211,"score":79,"percentile":212},"2025-11-20",0.97453,{"date":214,"score":79,"percentile":175},"2025-11-21",{"date":216,"score":79,"percentile":180},"2025-11-22",{"date":218,"score":79,"percentile":180},"2025-11-23",{"date":220,"score":79,"percentile":175},"2025-11-24",{"date":222,"score":79,"percentile":197},"2025-11-25",{"date":224,"score":79,"percentile":183},"2025-11-26",{"date":226,"score":79,"percentile":194},"2025-11-27",{"date":228,"score":79,"percentile":194},"2025-11-28",{"date":230,"score":79,"percentile":183},"2025-11-29",{"date":232,"score":79,"percentile":233},"2025-11-30",0.97447,{"date":235,"score":79,"percentile":236},"2025-12-01",0.9747,{"date":238,"score":79,"percentile":239},"2025-12-02",0.97469,{"date":241,"score":79,"percentile":236},"2025-12-03",{"date":243,"score":79,"percentile":244},"2025-12-04",0.97446,{"date":246,"score":79,"percentile":244},"2025-12-05",{"date":248,"score":79,"percentile":244},"2025-12-06",{"date":250,"score":79,"percentile":180},"2025-12-07",{"date":252,"score":79,"percentile":175},"2025-12-08",{"date":254,"score":79,"percentile":180},"2025-12-09",{"date":256,"score":79,"percentile":212},"2025-12-10",{"date":258,"score":79,"percentile":259},"2025-12-11",0.97455,{"date":261,"score":79,"percentile":262},"2025-12-12",0.97458,{"date":264,"score":79,"percentile":265},"2025-12-13",0.97459,{"date":267,"score":79,"percentile":265},"2025-12-14",{"date":269,"score":79,"percentile":270},"2025-12-15",0.9746,{"date":272,"score":79,"percentile":273},"2025-12-16",0.97462,{"date":275,"score":79,"percentile":276},"2025-12-17",0.97464,{"date":278,"score":79,"percentile":239},"2025-12-18",{"date":280,"score":79,"percentile":236},"2025-12-19",{"date":282,"score":79,"percentile":236},"2025-12-20",{"date":284,"score":79,"percentile":285},"2025-12-21",0.97468,{"date":287,"score":79,"percentile":288},"2025-12-22",0.97467,{"date":290,"score":79,"percentile":288},"2025-12-23",{"date":292,"score":79,"percentile":239},"2025-12-24",{"date":294,"score":79,"percentile":295},"2025-12-25",0.97471,{"date":297,"score":79,"percentile":298},"2025-12-26",0.97472,{"date":300,"score":79,"percentile":301},"2025-12-27",0.97496,{"date":303,"score":79,"percentile":298},"2025-12-28",{"date":305,"score":79,"percentile":306},"2025-12-29",0.97473,{"date":308,"score":79,"percentile":306},"2025-12-30",{"date":310,"score":79,"percentile":311},"2025-12-31",0.97477,{"date":313,"score":79,"percentile":314},"2026-01-01",0.97499,{"date":316,"score":79,"percentile":314},"2026-01-02",{"date":318,"score":79,"percentile":314},"2026-01-03",{"date":320,"score":79,"percentile":321},"2026-01-04",0.97479,{"date":323,"score":79,"percentile":324},"2026-01-05",0.97478,{"date":326,"score":79,"percentile":327},"2026-01-06",0.9748,{"date":329,"score":79,"percentile":321},"2026-01-07",{"date":331,"score":79,"percentile":332},"2026-01-08",0.97482,{"date":334,"score":79,"percentile":335},"2026-01-09",0.97486,{"date":337,"score":79,"percentile":338},"2026-01-10",0.97487,{"date":340,"score":79,"percentile":335},"2026-01-11",{"date":342,"score":79,"percentile":338},"2026-01-12",{"date":344,"score":79,"percentile":345},"2026-01-13",0.97489,{"date":347,"score":79,"percentile":348},"2026-01-14",0.97492,{"date":350,"score":79,"percentile":351},"2026-01-15",0.97493,{"date":353,"score":79,"percentile":354},"2026-01-16",0.97495,{"date":356,"score":79,"percentile":301},"2026-01-17",{"date":358,"score":79,"percentile":359},"2026-01-18",0.97491,{"date":361,"score":79,"percentile":351},"2026-01-19",{"date":363,"score":79,"percentile":364},"2026-01-20",0.97494,{"date":366,"score":79,"percentile":354},"2026-01-21",{"date":368,"score":79,"percentile":301},"2026-01-22",{"date":370,"score":79,"percentile":314},"2026-01-23",{"date":372,"score":79,"percentile":373},"2026-01-24",0.975,{"date":375,"score":79,"percentile":376},"2026-01-25",0.97498,{"date":378,"score":79,"percentile":373},"2026-01-26",{"date":380,"score":79,"percentile":373},"2026-01-27",{"date":382,"score":79,"percentile":383},"2026-01-28",0.97502,{"date":385,"score":79,"percentile":386},"2026-01-29",0.97501,{"date":388,"score":79,"percentile":386},"2026-01-30",{"date":390,"score":79,"percentile":373},"2026-01-31",{"date":392,"score":79,"percentile":393},"2026-02-01",0.97522,[395],{"source":83,"cvss_v2_0":396,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":81,"baseSeverity":9,"vectorString":84,"impactScore":397,"exploitabilityScore":398},2.9,8.6,[400,408],{"ecosystem":9,"name":401,"vendor":402,"product":401,"cpe_part":403,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":404},"geronimo","apache","a",[405],{"version":406,"is_range":26,"range_type":407,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0","cpe",{"ecosystem":409,"name":410,"vendor":401,"product":411,"cpe_part":9,"purl_type":412,"purl_namespace":401,"purl_name":411,"source":9,"versions":413},"Maven","geronimo:geronimo-console-standard","geronimo-console-standard","maven",[414],{"version":415,"is_range":45,"range_type":416,"version_start":9,"version_start_type":9,"version_end":417,"version_end_type":418,"fixed_in":9},"lt1_1","ecosystem","1.1","excluding"]