Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun one web server 6.1 vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2004-2763
The default configuration of Sun ONE/iPlanet Web Server 4.1 SP1 through SP12 and 6.0 SP1 through SP5 responds to the HTTP TRACE request, which can allow remote malicious users to steal information using cross-site tracing (XST) attacks in applications that are vulnerable to cross...
Sun Iplanet Web Server 4.1
Sun One Web Server 4.1
Sun One Web Server 6.1
Sun Iplanet Web Server 6.0
Sun One Web Server 6.0
4.3
CVSSv2
CVE-2009-1934
Cross-site scripting (XSS) vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote malicious users to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error.
Sun Java System Web Server 6.1
Sun One Web Server 6.1
6.8
CVSSv2
CVE-2006-2501
Cross-site scripting (XSS) vulnerability in Sun ONE Web Server 6.0 SP9 and previous versions, Java System Web Server 6.1 SP4 and previous versions, Sun ONE Application Server 7 Platform and Standard Edition Update 6 and previous versions, and Java System Application Server 7 2004...
Sun Java System Web Server 6.1
Sun One Application Server 7.0
Sun One Web Server 6.0
Sun One Application Server
Sun One Web Server
Sun One Application Server 6.0
Sun Java System Application Server
Sun Java System Web Server
4.3
CVSSv2
CVE-2005-2094
Sun SunONE web server 6.1 SP1 allows remote malicious users to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes SunONE ...
Sun One Web Server 6.1
6.8
CVSSv2
CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server prior to 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote malicious users to bypass HTTP request filtering, hijack web sessions, perform cross-site scripti...
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Application Server 8.1
Sun One Application Server 7.0
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 3.6
Sun Java System Application Server 7.0
Sun Java System Web Proxy Server -
5
CVSSv2
CVE-2005-1889
Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and previous versions allows malicious users to read files.
Sun Java System Web Server 6.1
Sun Java System Web Server
5
CVSSv2
CVE-2009-2445
Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote malicious users to read arbitrary JSP files via an alternate data stream syntax, as demonstrated by a .jsp::$DAT...
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
5
CVSSv2
CVE-2004-1815
Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote malicious users to cause a denial of service (memory consumption).
Sun One Application Server 7.0
Macromedia Coldfusion 6.0
Macromedia Coldfusion 6.1
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
6.8
CVSSv2
CVE-2003-0413
Cross-site scripting (XSS) vulnerability in the webapps-simple sample application for (1) Sun ONE Application Server 7.0 for Windows 2000/XP or (2) Sun Java System Web Server 6.1 allows remote malicious users to insert arbitrary web script or HTML via an HTTP request that generat...
Sun One Application Server 7.0
1 EDB exploit
4.3
CVSSv2
CVE-2004-2765
Cross-site scripting (XSS) vulnerability in Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 prior to 5.2hf2.02, when Internet Explorer is used, allows remote malicious users to inject arbitrary web script or HTML via a crafted e-mail message, a different ...
Sun Iplanet Messaging Server 5.2
Sun One Messaging Server 6.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »