Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mortbay jetty jetty 6 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2007-5613
Cross-site scripting (XSS) vulnerability in Dump Servlet in Mortbay Jetty prior to 6.1.6rc1 allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters and cookies.
Mortbay Jetty Jetty 4.0
Mortbay Jetty Jetty 4.1
Mortbay Jetty Jetty 1.0
Mortbay Jetty Jetty 5.1
Mortbay Jetty Jetty 6
Mortbay Jetty Jetty 4.2
Mortbay Jetty Jetty 5
Mortbay Jetty Jetty 2.4
Mortbay Jetty Jetty 3.0
Mortbay Jetty Jetty 3.1
Mortbay Jetty Jetty 6.1
668
VMScore
CVE-2007-5614
Mortbay Jetty prior to 6.1.6rc1 does not properly handle "certain quote sequences" in HTML cookie parameters, which allows remote malicious users to hijack browser sessions via unspecified vectors.
Mortbay Jetty Jetty 1.0
Mortbay Jetty Jetty 2.4
Mortbay Jetty Jetty 5.1
Mortbay Jetty Jetty 6
Mortbay Jetty Jetty 4.0
Mortbay Jetty Jetty 4.1
Mortbay Jetty Jetty 3.0
Mortbay Jetty Jetty 3.1
Mortbay Jetty Jetty 6.1
Mortbay Jetty Jetty 4.2
Mortbay Jetty Jetty 5
435
VMScore
CVE-2009-4610
Multiple cross-site scripting (XSS) vulnerabilities in Mort Bay Jetty 6.x and 7.0.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the query string to jsp/dump.jsp in the JSP Dump feature, or the (2) Name or (3) Value parameter to the default URI for ...
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.8
Mortbay Jetty 6.1.7
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.10
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.20
Mortbay Jetty 6.1.1
Mortbay Jetty 6.1.0
Mortbay Jetty 6.0.0
Mortbay Jetty 7.0.0
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.3
Mortbay Jetty 6.1.19
Mortbay Jetty 6.1.14
Mortbay Jetty 6.1.9
Mortbay Jetty 6.1.11
Mortbay Jetty 6.0.2
Mortbay Jetty 6.0.1
1 EDB exploit
510
VMScore
CVE-2009-1523
Directory traversal vulnerability in the HTTP server in Mort Bay Jetty 5.1.14, 6.x prior to 6.1.17, and 7.x up to and including 7.0.0.M2 allows remote malicious users to access arbitrary files via directory traversal sequences in the URI.
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.1
Mortbay Jetty 5.1.13
Mortbay Jetty 5.1.14
Mortbay Jetty 6.0.1
Mortbay Jetty 6.0.0
Mortbay Jetty 5.1.8
Mortbay Jetty 5.1.7
Mortbay Jetty 5.1.4
Mortbay Jetty 5.1.3
Mortbay Jetty 5.1.1
Mortbay Jetty 5.1.0
Mortbay Jetty 5.1
Mortbay Jetty 5.0.0
Mortbay Jetty 4.2.22
Mortbay Jetty 4.2.16
Mortbay Jetty 5.0
Mortbay Jetty 4.2.14
2 EDB exploits
445
VMScore
CVE-2009-4609
The Dump Servlet in Mort Bay Jetty 6.x and 7.0.0 allows remote malicious users to obtain sensitive information about internal variables and other data via a request to a URI ending in /dump/, as demonstrated by discovering the value of the getPathTranslated variable.
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.7
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.20
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.0
Mortbay Jetty 6.0.0
Mortbay Jetty 6.1.9
Mortbay Jetty 6.1.10
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.3
Mortbay Jetty 6.1.19
Mortbay Jetty 6.0.2
Mortbay Jetty 7.0.0
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.1
Mortbay Jetty 6.1.14
Mortbay Jetty 6.1.11
Mortbay Jetty 6.1.8
Mortbay Jetty 6.0.1
668
VMScore
CVE-2009-4611
Mort Bay Jetty 6.x up to and including 6.1.22 and 7.0.0 writes backtrace data without sanitizing non-printable characters, which might allow remote malicious users to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request cont...
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.7
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.0
Mortbay Jetty 6.0.0
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.11
Mortbay Jetty 6.1.8
Mortbay Jetty 6.1.20
Mortbay Jetty 6.1.1
Mortbay Jetty 6.0.1
Mortbay Jetty 6.1.3
Mortbay Jetty 6.1.19
Mortbay Jetty 6.1.14
Mortbay Jetty 6.1.9
Mortbay Jetty 6.1.10
Mortbay Jetty 6.1.5
Mortbay Jetty 6.0.2
Mortbay Jetty 7.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started