Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mortbay jetty jetty 3.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-5613
Cross-site scripting (XSS) vulnerability in Dump Servlet in Mortbay Jetty prior to 6.1.6rc1 allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters and cookies.
Mortbay Jetty Jetty 4.0
Mortbay Jetty Jetty 4.1
Mortbay Jetty Jetty 1.0
Mortbay Jetty Jetty 5.1
Mortbay Jetty Jetty 6
Mortbay Jetty Jetty 4.2
Mortbay Jetty Jetty 5
Mortbay Jetty Jetty 2.4
Mortbay Jetty Jetty 3.0
Mortbay Jetty Jetty 3.1
Mortbay Jetty Jetty 6.1
7.5
CVSSv2
CVE-2007-5614
Mortbay Jetty prior to 6.1.6rc1 does not properly handle "certain quote sequences" in HTML cookie parameters, which allows remote malicious users to hijack browser sessions via unspecified vectors.
Mortbay Jetty Jetty 1.0
Mortbay Jetty Jetty 2.4
Mortbay Jetty Jetty 5.1
Mortbay Jetty Jetty 6
Mortbay Jetty Jetty 4.0
Mortbay Jetty Jetty 4.1
Mortbay Jetty Jetty 3.0
Mortbay Jetty Jetty 3.1
Mortbay Jetty Jetty 6.1
Mortbay Jetty Jetty 4.2
Mortbay Jetty Jetty 5
5
CVSSv2
CVE-2005-3747
Unspecified vulnerability in Jetty prior to 5.1.6 allows remote malicious users to obtain source code of JSP pages, possibly involving requests for .jsp files with URL-encoded backslash ("%5C") characters. NOTE: this might be the same issue as CVE-2006-2758.
Mortbay Jetty 1.0.1
Mortbay Jetty 1.1
Mortbay Jetty 3.0.a9
Mortbay Jetty 3.0.a4
Mortbay Jetty 3.0.a1
Mortbay Jetty 3.0.0
Mortbay Jetty 2.1.b0
Mortbay Jetty 2.1.1
Mortbay Jetty 2.1.6
Mortbay Jetty 2.2
Mortbay Jetty 1.3.1
Mortbay Jetty 1.3.2
Mortbay Jetty 2.0
Mortbay Jetty 2.0.0
Mortbay Jetty 2.4.1
Mortbay Jetty 2.4.0
Mortbay Jetty 3.0.a92
Mortbay Jetty 3.0.a91
Mortbay Jetty 2.2.0
Mortbay Jetty 2.2.7
Mortbay Jetty 2.2.8
Mortbay Jetty 4.2.21
1 EDB exploit
5
CVSSv2
CVE-2011-4461
Jetty 8.1.0.RC2 and previous versions computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote malicious users to cause a denial of service (CPU consumption) by sending many crafted parameters.
Oracle Sun Storage Common Array Manager 6.9.0
Mortbay Jetty 7.0.0
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.11
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.1
Mortbay Jetty 6.1.0
Mortbay Jetty 6.0.0
Mortbay Jetty 5.1.14
Mortbay Jetty 5.0
Mortbay Jetty 5.1.12
Mortbay Jetty 5.1.11
Mortbay Jetty 5.1.5
Mortbay Jetty 5.1.0
Mortbay Jetty 5.1
Mortbay Jetty 5.1.3
Mortbay Jetty 4.2.17
Mortbay Jetty 4.2.22
Mortbay Jetty 4.2.15
1 Article
5
CVSSv2
CVE-2009-1523
Directory traversal vulnerability in the HTTP server in Mort Bay Jetty 5.1.14, 6.x prior to 6.1.17, and 7.x up to and including 7.0.0.M2 allows remote malicious users to access arbitrary files via directory traversal sequences in the URI.
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.1
Mortbay Jetty 5.1.13
Mortbay Jetty 5.1.14
Mortbay Jetty 6.0.1
Mortbay Jetty 6.0.0
Mortbay Jetty 5.1.8
Mortbay Jetty 5.1.7
Mortbay Jetty 5.1.4
Mortbay Jetty 5.1.3
Mortbay Jetty 5.1.1
Mortbay Jetty 5.1.0
Mortbay Jetty 5.1
Mortbay Jetty 5.0.0
Mortbay Jetty 4.2.22
Mortbay Jetty 4.2.16
Mortbay Jetty 5.0
Mortbay Jetty 4.2.14
2 EDB exploits
4.3
CVSSv2
CVE-2009-1524
Cross-site scripting (XSS) vulnerability in Mort Bay Jetty prior to 6.1.17 allows remote malicious users to inject arbitrary web script or HTML via a directory listing request containing a ; (semicolon) character.
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.11
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.1
Mortbay Jetty 6.1.0
Mortbay Jetty 5.1.14
Mortbay Jetty 4.2.27
Mortbay Jetty 6.0.0
Mortbay Jetty 5.1.7
Mortbay Jetty 5.1.3
Mortbay Jetty 4.2.24
Mortbay Jetty 5.1.2
Mortbay Jetty 5.1.0
Mortbay Jetty 6.0.2
Mortbay Jetty 5.1.13
Mortbay Jetty 4.2.26
Mortbay Jetty 6.0.1
Mortbay Jetty 5.1.8
Mortbay Jetty 5.1.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started