Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun java system web server 6.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-6569
Cross-site scripting (XSS) vulnerability in the View Error Log functionality in Sun Java System Web Proxy Server 4.x prior to 4.0.6 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566246.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Server 6.1
Sun Java System Web Proxy Server
Sun Java System Web Server 7.0
5
CVSSv2
CVE-2005-1889
Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and previous versions allows malicious users to read files.
Sun Java System Web Server 6.1
Sun Java System Web Server
4.3
CVSSv2
CVE-2008-2166
Cross-site scripting (XSS) vulnerability in the search module in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 2 allows remote malicious users to inject arbitrary web script or HTML via unknown parameters in index.jsp.
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
5
CVSSv2
CVE-2009-2445
Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote malicious users to read arbitrary JSP files via an alternate data stream syntax, as demonstrated by a .jsp::$DAT...
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
7.5
CVSSv2
CVE-2007-1488
Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 prior to 20070315 allows remote malicious users to "gain unauthorized access to data", possibly involving a sample application.
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
7.5
CVSSv2
CVE-2007-4164
CRLF injection vulnerability in the redirect feature in Sun Java System Web Server 6.1 and 7.0 prior to 20070802, when the redirect Server Application Function (SAF) uses the url-prefix parameter and escape is disabled, or an Error directive uses the url-prefix parameter in obj.c...
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
4.3
CVSSv2
CVE-2008-2518
Cross-site scripting (XSS) vulnerability in the advanced search mechanism (webapps/search/advanced.jsp) in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, probably rela...
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
5
CVSSv2
CVE-2004-2216
Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and previous versions and 6.1 SP1 and previous versions, and Application Server 7 Update 4 and previous versions, allows remote malicious users to cause a denial of service (crash) via a malformed client certificate.
Sun Java System Web Server 6.0
Sun Java System Application Server 7.0
Sun Java System Web Server 6.1
4.3
CVSSv2
CVE-2007-6571
Cross-site scripting (XSS) vulnerability in Sun Java System Web Proxy Server 3.6 before SP11 on Windows allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6611356.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Proxy Server 4.0
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4.0.5
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Proxy Server 4.0.3
4.3
CVSSv2
CVE-2007-6572
Cross-site scripting (XSS) vulnerability in Sun Java System Web Server 6.1 before SP8 and 7.0 before Update 1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566204.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4.0.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »