Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-14340
CVE-2025-14340
Cross-site scripting in REST Management Interface in Payara Server <4.1.2.191.54, <5.83.0, <6.34.0, <7.2026.1 allows an attacker to mislead the administrator to change the admin password via URL Payload.
Published Feb 25, 2026
https://github.com/advisories/GHSA-rgjw-pqcr-56gf
CVSS Score
Medium
5.1
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
maven
org.glassfish.admin/rest-service
3.0-b54
maven
org.glassfish.admin/rest-service
3.0-b55
maven
org.glassfish.admin/rest-service
3.0-b56
maven
org.glassfish.admin/rest-service
3.0-b57
maven
org.glassfish.admin/rest-service
3.0-b58
maven
org.glassfish.admin/rest-service
3.0-b59
maven
org.glassfish.admin/rest-service
3.0-b60
maven
org.glassfish.admin/rest-service
3.0-b61
maven
org.glassfish.admin/rest-service
3.0-b62
maven
org.glassfish.admin/rest-service
3.0-b63
maven
org.glassfish.admin/rest-service
3.0-b64
maven
org.glassfish.admin/rest-service
3.0-b65
maven
org.glassfish.admin/rest-service
3.0-b66
maven
org.glassfish.admin/rest-service
3.0-b67
maven
org.glassfish.admin/rest-service
3.0-b68
maven
org.glassfish.admin/rest-service
3.0-b69
maven
org.glassfish.admin/rest-service
3.0-b70
maven
org.glassfish.admin/rest-service
3.0-b71
maven
org.glassfish.admin/rest-service
3.0-b72
maven
org.glassfish.admin/rest-service
3.0-b73
maven
org.glassfish.admin/rest-service
3.0-b74
maven
org.glassfish.admin/rest-service
3.0-b74a
maven
org.glassfish.admin/rest-service
3.0-b74b
maven
org.glassfish.admin/rest-service
3.0.1-b01
maven
org.glassfish.admin/rest-service
3.0.1-b02
maven
org.glassfish.admin/rest-service
3.0.1-b03
maven
org.glassfish.admin/rest-service
3.0.1-b04
maven
org.glassfish.admin/rest-service
3.0.1-b05
maven
org.glassfish.admin/rest-service
3.0.1-b06
maven
org.glassfish.admin/rest-service
3.0.1-b07
maven
org.glassfish.admin/rest-service
3.0.1-b08
maven
org.glassfish.admin/rest-service
3.0.1-b09
maven
org.glassfish.admin/rest-service
3.0.1-b10
maven
org.glassfish.admin/rest-service
3.0.1-b11
maven
org.glassfish.admin/rest-service
3.0.1-b12
maven
org.glassfish.admin/rest-service
3.0.1-b14
maven
org.glassfish.admin/rest-service
3.0.1-b15
maven
org.glassfish.admin/rest-service
3.0.1-b16
maven
org.glassfish.admin/rest-service
3.0.1-b17
maven
org.glassfish.admin/rest-service
3.0.1-b18
maven
org.glassfish.admin/rest-service
3.0.1-b19
maven
org.glassfish.admin/rest-service
3.0.1-b20
maven
org.glassfish.admin/rest-service
3.0.1
maven
org.glassfish.admin/rest-service
3.0
maven
org.glassfish.admin/rest-service
3.1-b01
maven
org.glassfish.admin/rest-service
3.1-b02
maven
org.glassfish.admin/rest-service
3.1-b03
maven
org.glassfish.admin/rest-service
3.1-b04
maven
org.glassfish.admin/rest-service
3.1-b05
maven
org.glassfish.admin/rest-service
3.1-b06
1-50 of 469
CVE-2025-14340 | Components Impacted | Sonatype Guide | Sonatype Guide
