Launchpad.net

CVE 2016-6348

JacksonJsonpInterceptor in RESTEasy might allow remote attackers to conduct a cross-site script inclusion (XSSI) attack.

See the CVE page on Mitre.org for more details.

References