Crossite scripting with http://server:8001/console/actions/jndi/JndiFramesetAction/
vulners.com/securityvulns/securityvulns:doc:8464