Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mortbay jetty jetty 1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5613
Cross-site scripting (XSS) vulnerability in Dump Servlet in Mortbay Jetty prior to 6.1.6rc1 allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters and cookies.
Mortbay Jetty Jetty 4.0
Mortbay Jetty Jetty 4.1
Mortbay Jetty Jetty 3.0
Mortbay Jetty Jetty 3.1
Mortbay Jetty Jetty 1.0
Mortbay Jetty Jetty 4.2
Mortbay Jetty Jetty 5
Mortbay Jetty Jetty 2.4
Mortbay Jetty Jetty 6
Mortbay Jetty Jetty 5.1
Mortbay Jetty Jetty 6.1
NA
CVE-2007-5614
Mortbay Jetty prior to 6.1.6rc1 does not properly handle "certain quote sequences" in HTML cookie parameters, which allows remote malicious users to hijack browser sessions via unspecified vectors.
Mortbay Jetty Jetty 4.0
Mortbay Jetty Jetty 4.1
Mortbay Jetty Jetty 3.0
Mortbay Jetty Jetty 3.1
Mortbay Jetty Jetty 1.0
Mortbay Jetty Jetty 4.2
Mortbay Jetty Jetty 5
Mortbay Jetty Jetty 2.4
Mortbay Jetty Jetty 6
Mortbay Jetty Jetty 5.1
Mortbay Jetty Jetty 6.1
NA
CVE-2005-3747
Unspecified vulnerability in Jetty prior to 5.1.6 allows remote malicious users to obtain source code of JSP pages, possibly involving requests for .jsp files with URL-encoded backslash ("%5C") characters. NOTE: this might be the same issue as CVE-2006-2758.
Mortbay Jetty 1.0.1
Mortbay Jetty 4.2.25
Mortbay Jetty 5.1.3
Mortbay Jetty 1.3.1
Mortbay Jetty 3.0.a3
Mortbay Jetty 1.3.4
Mortbay Jetty 4.2.22
Mortbay Jetty 3.1.8
Mortbay Jetty 3.0.a0
Mortbay Jetty 4.2.1
Mortbay Jetty 2.0.4
Mortbay Jetty 2.2
Mortbay Jetty 2.2.8
Mortbay Jetty 5.1.2
Mortbay Jetty 5.1.5
Mortbay Jetty 3.0.a95
Mortbay Jetty 4.2.9
Mortbay Jetty 3.0.0
Mortbay Jetty 5.0
Mortbay Jetty 2.1.1
Mortbay Jetty 3.0.a97
Mortbay Jetty 2.0
1 EDB exploit
5.3
CVSSv3
CVE-2011-4461
Jetty 8.1.0.RC2 and previous versions computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote malicious users to cause a denial of service (CPU consumption) by sending many crafted parameters.
Oracle Sun Storage Common Array Manager 6.9.0
Mortbay Jetty 1.0.1
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.0
Mortbay Jetty 6.1.12
Mortbay Jetty 4.2.25
Mortbay Jetty 5.1.3
Mortbay Jetty 6.0.0
Mortbay Jetty 1.3.1
Mortbay Jetty 3.0.a3
Mortbay Jetty 1.3.4
Mortbay Jetty 4.2.22
Mortbay Jetty 3.1.8
Mortbay Jetty 3.0.a0
Mortbay Jetty 6.1.15
Mortbay Jetty 4.2.1
Mortbay Jetty 2.0.4
Mortbay Jetty 2.2
Mortbay Jetty 2.2.8
Mortbay Jetty 7.0.0
Mortbay Jetty 5.1.2
Mortbay Jetty 5.1.5
1 Article
NA
CVE-2009-1523
Directory traversal vulnerability in the HTTP server in Mort Bay Jetty 5.1.14, 6.x prior to 6.1.17, and 7.x up to and including 7.0.0.M2 allows remote malicious users to access arbitrary files via directory traversal sequences in the URI.
Mortbay Jetty 1.0.1
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.0
Mortbay Jetty 6.1.12
Mortbay Jetty 4.2.25
Mortbay Jetty 5.1.3
Mortbay Jetty 6.0.0
Mortbay Jetty 1.3.1
Mortbay Jetty 3.0.a3
Mortbay Jetty 1.3.4
Mortbay Jetty 4.2.22
Mortbay Jetty 3.1.8
Mortbay Jetty 3.0.a0
Mortbay Jetty 6.1.15
Mortbay Jetty 4.2.1
Mortbay Jetty 2.0.4
Mortbay Jetty
Mortbay Jetty 2.2
Mortbay Jetty 2.2.8
Mortbay Jetty 7.0.0
Mortbay Jetty 5.1.2
Mortbay Jetty 5.1.5
2 EDB exploits
NA
CVE-2009-1524
Cross-site scripting (XSS) vulnerability in Mort Bay Jetty prior to 6.1.17 allows remote malicious users to inject arbitrary web script or HTML via a directory listing request containing a ; (semicolon) character.
Mortbay Jetty 1.0.1
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.0
Mortbay Jetty 6.1.12
Mortbay Jetty 4.2.25
Mortbay Jetty 5.1.3
Mortbay Jetty 6.0.0
Mortbay Jetty 1.3.1
Mortbay Jetty 3.0.a3
Mortbay Jetty 1.3.4
Mortbay Jetty 4.2.22
Mortbay Jetty 3.1.8
Mortbay Jetty 3.0.a0
Mortbay Jetty 6.1.15
Mortbay Jetty 4.2.1
Mortbay Jetty 2.0.4
Mortbay Jetty 2.2
Mortbay Jetty 2.2.8
Mortbay Jetty 5.1.2
Mortbay Jetty 5.1.5
Mortbay Jetty 5.1.13
Mortbay Jetty 3.0.a95
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started