Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apple webobjects vulnerabilities and exploits

(subscribe to this query)
6.1
CVSSv3
CVE-2022-37724
Project Wonder WebObjects 1.0 up to and including 5.4.3 is vulnerable to Arbitrary HTTP Header injection and URL- or Header-based XSS reflection in all web-server adaptor interfaces.
Apple Webobjects
NA
CVE-2011-3998
Cross-site scripting (XSS) vulnerability in Apple WebObjects 5.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Apple Webobjects 4.0Apple Webobjects 3.5Apple Webobjects 3.1Apple WebobjectsApple Webobjects 5.0Apple Webobjects 5.1Apple Webobjects 4.5
NA
CVE-2008-2318
The WOHyperlink implementation in WebObjects in Apple Xcode tools prior to 3.1 appends local session IDs to generated non-local URLs, which allows remote malicious users to obtain potentially sensitive information by reading the requests for these URLs.
Apple Xcode Tools 1.0Apple Xcode Tools 2.0Apple Xcode ToolsApple Xcode Tools 2.3Apple Xcode Tools 2.4Apple Xcode Tools 2.1Apple Xcode Tools 2.2.1Apple Xcode 1.5Apple Xcode 2.2Apple Xcode Tools 2.4.1Apple Xcode Tools 2.5
NA
CVE-2006-4387
Apple Mac OS X 10.4 up to and including 10.4.7, when the administrator clears the "Allow user to administer this computer" checkbox in System Preferences for a user, does not remove the user's account from the appserveradm or appserverusr groups, which still allows...
Apple Mac Os X 10.4.6Apple Mac Os X 10.4.7Apple Mac Os X 10.4.2Apple Mac Os X 10.4.3Apple Mac Os X 10.4Apple Mac Os X 10.4.1Apple Mac Os X 10.4.4Apple Mac Os X 10.4.5
NA
CVE-2006-1466
Xcode Tools prior to 2.3 for Mac OS X 10.4, when running the WebObjects plugin, allows remote malicious users to access or modify WebObjects projects through a network service.
Apple XcodeApple Mac Os X 10.4
NA
CVE-2000-0299
Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote malicious users to cause a denial of service via an HTTP request with long headers such as Accept.
Apple Webobjects 4.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook