Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
java system web server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-1889
Unknown vulnerability in Sun ONE Application Server 6.5 SP1 Maintenance Update 6 and previous versions allows malicious users to read files.
Sun Java System Web Server 6.1
Sun Java System Web Server
4
CVSSv2
CVE-2006-3921
Sun Java System Application Server (SJSAS) 7 up to and including 8.1 and Web Server (SJSWS) 6.0 and 6.1 allows remote authenticated users to read files outside of the "document root directory" via a direct request using a UTF-8 encoded URI.
Sun Java System Application Server 7.0
Sun Java System Application Server 8.1
Sun Java System Web Server 6.0
Sun Java System Application Server 7.1
Sun Java System Web Server 6.1
4.3
CVSSv2
CVE-2008-2166
Cross-site scripting (XSS) vulnerability in the search module in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 2 allows remote malicious users to inject arbitrary web script or HTML via unknown parameters in index.jsp.
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
5
CVSSv2
CVE-2009-2445
Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote malicious users to read arbitrary JSP files via an alternate data stream syntax, as demonstrated by a .jsp::$DAT...
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
7.5
CVSSv2
CVE-2000-0629
The default configuration of the Sun Java web server 2.0 and previous versions allows remote malicious users to execute arbitrary commands by uploading Java code to the server via board.html, then directly calling the JSP compiler servlet.
Sun Java System Web Server 1.1.3
Sun Java System Web Server 2.0
7.5
CVSSv2
CVE-2007-1488
Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 prior to 20070315 allows remote malicious users to "gain unauthorized access to data", possibly involving a sample application.
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
7.5
CVSSv2
CVE-2007-4164
CRLF injection vulnerability in the redirect feature in Sun Java System Web Server 6.1 and 7.0 prior to 20070802, when the redirect Server Application Function (SAF) uses the url-prefix parameter and escape is disabled, or an Error directive uses the url-prefix parameter in obj.c...
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
4.3
CVSSv2
CVE-2008-2518
Cross-site scripting (XSS) vulnerability in the advanced search mechanism (webapps/search/advanced.jsp) in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, probably rela...
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
9.3
CVSSv2
CVE-2007-3715
Sun Java System Application Server and Web Server 7.0 up to and including 9.0 prior to 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent malicious users to execute an arbitrary Java method via a crafted styleshe...
Sun Java System Application Server 8.2
Sun Java System Application Server 9.0
Sun Java System Web Server 7.0
6.8
CVSSv2
CVE-2006-2501
Cross-site scripting (XSS) vulnerability in Sun ONE Web Server 6.0 SP9 and previous versions, Java System Web Server 6.1 SP4 and previous versions, Sun ONE Application Server 7 Platform and Standard Edition Update 6 and previous versions, and Java System Application Server 7 2004...
Sun Java System Web Server 6.1
Sun One Application Server 7.0
Sun One Web Server 6.0
Sun One Application Server
Sun One Web Server
Sun One Application Server 6.0
Sun Java System Application Server
Sun Java System Web Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »