Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

redhat jboss application server 7.0.2 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2011-3609
A CSRF issue was found in JBoss Application Server 7 prior to 7.1.0. JBoss did not properly restrict access to the management console information (for example via the "Access-Control-Allow-Origin" HTTP access control flag). This can lead to unauthorized information leak...
Redhat Jboss Application Server 7.0.0Redhat Jboss Application Server 7.0.1Redhat Jboss Application Server 7.0.2
3.5
CVSSv2
CVE-2011-3606
A DOM based cross-site scripting flaw was found in the JBoss Application Server 7 prior to 7.1.0 Beta 1 administration console. A remote attacker could provide a specially-crafted web page and trick the valid JBoss AS user, with the administrator privilege, to visit it, which wou...
Redhat Jboss Application Server 7.0.0Redhat Jboss Application Server 7.0.1Redhat Jboss Application Server 7.0.2
4.3
CVSSv2
CVE-2012-4529
The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and previous versions, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a session, which allows remote malicious users to obtain the session id ...
Redhat Jboss Community Application Server 6.0.0Redhat Jboss Community Application Server 6.1.0Redhat Jboss Community Application Server 7.0.0Redhat Jboss Community Application Server 5.1.0Redhat Jboss Community Application Server 5.0.1Redhat Jboss Community Application Server 5.0.0Redhat Jboss Community Application Server 7.0.1Redhat Jboss Community Application Server 7.1.0Redhat Jboss Community Application Server 7.0.2Redhat Jboss Community Application ServerRedhat Jboss Enterprise Application Platform 6.0.0
4.3
CVSSv2
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate ValidatorRedhat Hibernate Validator 6.1.0Redhat Single Sign-on -Redhat Jboss Enterprise Application Platform -Redhat Jboss Data Grid -Redhat Openshift Application Runtimes -Redhat Fuse 1.0Redhat Jboss Enterprise Application Platform 7.2Redhat Jboss Enterprise Application Platform 7.3Netapp Active Iq Unified Manager -Netapp Element -Netapp Snapcenter Plug-in -Netapp Management Services For Element Software And Netapp Hci -Oracle Flexcube Investor Servicing 12.3.0Oracle Flexcube Investor Servicing 12.1.0Oracle Solaris 11Oracle Flexcube Private Banking 12.1.0Oracle Insurance Policy Administration J2ee 10.2.0Oracle Flexcube Private Banking 12.0.0Oracle Flexcube Investor Servicing 12.0.4Oracle Weblogic Server 12.1.3.0.0Oracle Retail Integration Bus 13.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook