Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java system application server vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2006-3921
Sun Java System Application Server (SJSAS) 7 up to and including 8.1 and Web Server (SJSWS) 6.0 and 6.1 allows remote authenticated users to read files outside of the "document root directory" via a direct request using a UTF-8 encoded URI.
Sun Java System Application Server 7.0
Sun Java System Application Server 8.1
Sun Java System Web Server 6.0
Sun Java System Application Server 7.1
Sun Java System Web Server 6.1
4.3
CVSSv2
CVE-2007-4025
Unspecified vulnerability in Sun Java System (SJS) Application Server 8.1 up to and including 9.0 prior to 20070724 on Windows allows remote malicious users to obtain JSP source code via unspecified vectors.
Sun Java System Application Server 8.1
Sun Java System Application Server 8.2
Sun Java System Application Server 9.0
6.8
CVSSv2
CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server prior to 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote malicious users to bypass HTTP request filtering, hijack web sessions, perform cross-site scripti...
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Application Server 8.1
Sun One Application Server 7.0
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 3.6
Sun Java System Application Server 7.0
Sun Java System Web Proxy Server -
2.6
CVSSv2
CVE-2006-3225
Cross-site scripting (XSS) vulnerability in Sun ONE Application Server 7 before Update 9, Java System Application Server 7 2004Q2 before Update 5, and Java System Application Server Enterprise Edition 8.1 2005 Q1 allows remote malicious users to inject arbitrary HTML or web scrip...
Sun One Application Server
Sun Java System Application Server 8.1
Sun Java System Application Server
9.3
CVSSv2
CVE-2007-3715
Sun Java System Application Server and Web Server 7.0 up to and including 9.0 prior to 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent malicious users to execute an arbitrary Java method via a crafted styleshe...
Sun Java System Application Server 8.2
Sun Java System Application Server 9.0
Sun Java System Web Server 7.0
6.8
CVSSv2
CVE-2007-5153
Unspecified vulnerability in Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 8.x container, allows remote malicious users to execute arbitrary code via unspecified vectors.
Sun Java System Application Server 8.1
Sun Java System Application Server 8.2
Sun Java System Access Manager 7.1
4
CVSSv2
CVE-2005-4046
Unspecified vulnerability in Reverse SSL Proxy Plug-in for Sun Java System Application Server Standard Edition 7 2004Q2, Application Server Enterprise Edition 8.1 2005Q1, and Sun ONE Application Server 7 Standard Edition, as used in multiple web servers, allows remote malicious u...
Sun Java System Application Server 7.0
Sun Java System Application Server 8.1
Sun One Application Server 7.0
5
CVSSv2
CVE-2009-0278
Sun Java System Application Server (AS) 8.1 and 8.2 allows remote malicious users to read the Web Application configuration files in the (1) WEB-INF or (2) META-INF directory via a malformed request.
Sun Java System Application Server 8.2
Sun Java System Application Server 8.1
5
CVSSv2
CVE-2005-4805
Unspecified vulnerability in Sun Java System Application Server 7 Standard and Platform Edition 6 and previous versions, and 2004Q2 Standard and Platform Edition Update 2 and previous versions, allows remote malicious users to obtain the source code for Java Server pages (JSP) vi...
Sun Java System Application Server 7.0
Sun Java System Application Server 6.0
5
CVSSv2
CVE-2008-2120
Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote malicious users to obtain source code of JSP files via unknown vectors.
Sun Java System Web Server 7.0
Sun Java System Application Server
Sun Java System Web Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »