Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
caucho technology vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2441
Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and previous versions for Windows allows remote malicious users to obtain the system path via certain URLs associated with (1) deploying web applications or (2) displaying .xtp files.
Caucho Technology Resin
1 EDB exploit
NA
CVE-2007-2439
Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and previous versions for Windows allows remote malicious users to cause a denial of service (device hang) and read data from a COM or LPT device via a DOS device name with an arbitrary extension.
Caucho Technology Resin
NA
CVE-2004-0280
Caucho Technology Resin 2.1.12 allows remote malicious users to view JSP source via an HTTP request to a .jsp file that ends in a "%20" (encoded space character), e.g. index.jsp%20.
Caucho Technology Resin 2.1.12
NA
CVE-2002-1987
Directory traversal vulnerability in view_source.jsp in Resin 2.1.2 allows remote malicious users to read arbitrary files via a "\.." (backslash dot dot).
Caucho Technology Resin 2.1.2
NA
CVE-2002-1988
Resin 2.1.1 allows remote malicious users to cause a denial of service (memory consumption and hang) via a URL with long variables for non-existent resources.
Caucho Technology Resin 2.1.1
NA
CVE-2002-1989
Resin 2.1.1 allows remote malicious users to cause a denial of service (thread and connection consumption) via multiple URL requests containing the DOS 'CON' device name and a registered file extension such as .jsp or .xtp.
Caucho Technology Resin 2.1.1
NA
CVE-2001-0304
Directory traversal vulnerability in Caucho Resin 1.2.2 allows remote malicious users to read arbitrary files via a "\.." (dot dot) in a URL request.
Caucho Technology Resin 1.2.2
1 EDB exploit
NA
CVE-2004-0281
Caucho Technology Resin 2.1.12 allows remote malicious users to gain sensitive information and view the contents of the /WEB-INF/ directory via an HTTP request for "WEB-INF..", which is equivalent to "WEB-INF" in Windows.
Caucho Resin 2.1.12
1 EDB exploit
NA
CVE-2010-2032
Multiple cross-site scripting (XSS) vulnerabilities in resin-admin/digest.php in Caucho Technology Resin Professional 3.1.5, 3.1.10, 4.0.6, and possibly other versions allow remote malicious users to inject arbitrary web script or HTML via the (1) digest_realm or (2) digest_usern...
Caucho Resin 4.0.6
Caucho Resin 3.1.5
Caucho Resin 3.1.10
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2