Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bea weblogic server 5.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2000-1238
BEA Systems WebLogic Express and WebLogic Server 5.1 SP1-SP6 allows remote malicious users to bypass access controls for restricted JSP or servlet pages via a URL with multiple / (forward slash) characters before the restricted pages.
Bea Weblogic Server 5.1
NA
CVE-2000-0683
BEA WebLogic 5.1.x allows remote malicious users to read source code for parsed pages by inserting /*.shtml/ into the URL, which invokes the SSIServlet.
Bea Weblogic Server 5.1
NA
CVE-2000-0682
BEA WebLogic 5.1.x allows remote malicious users to read source code for parsed pages by inserting /ConsoleHelp/ into the URL, which invokes the FileServlet.
Bea Weblogic Server 5.1
NA
CVE-2000-0685
BEA WebLogic 5.1.x does not properly restrict access to the PageCompileServlet, which could allow remote malicious users to compile and execute Java JHTML code by directly invoking the servlet on any source file.
Bea Weblogic Server 3.1.8
Bea Weblogic Server 4.0.4
Bea Weblogic Server 4.5.1
1 EDB exploit
NA
CVE-2000-0684
BEA WebLogic 5.1.x does not properly restrict access to the JSPServlet, which could allow remote malicious users to compile and execute Java JSP code by directly invoking the servlet on any source file.
Bea Weblogic Server 3.1.8
Bea Weblogic Server 4.5.1
Bea Weblogic Server 4.0.4
1 EDB exploit
NA
CVE-2001-0098
Buffer overflow in Bea WebLogic Server prior to 5.1.0 allows remote malicious users to execute arbitrary commands via a long URL that begins with a ".." string.
Bea Weblogic Server
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2