Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
macromedia vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2002-1025
JRun 3.0 up to and including 4.0 allows remote malicious users to read JSP source code via an encoded null byte in an HTTP GET request, which causes the server to send the .JSP file unparsed.
Macromedia Jrun 3.0
Macromedia Jrun 3.1
Macromedia Jrun 4.0
445
VMScore
CVE-2002-2186
Macromedia JRun 3.0, 3.1, and 4.0 allow remote malicious users to view the source code of .JSP files via Unicode encoded character values in a URL.
Macromedia Jrun 3.0
Macromedia Jrun 3.1
Macromedia Jrun 4.0
445
VMScore
CVE-2002-2187
Unknown "file disclosure" vulnerability in Macromedia JRun 3.0, 3.1, and 4.0, related to a log file or jrun.ini, with unknown impact.
Macromedia Jrun 3.0
Macromedia Jrun 4.0
Macromedia Jrun 3.1
445
VMScore
CVE-2001-1544
Directory traversal vulnerability in Macromedia JRun Web Server (JWS) 2.3.3, 3.0 and 3.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the HTTP GET request.
Macromedia Jrun 3.1
Macromedia Jrun 3.0
Macromedia Jrun 2.3.3
445
VMScore
CVE-2002-1855
Macromedia JRun 3.0 up to and including 4.0, when running on Windows, allows remote malicious users to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF...
Macromedia Jrun 3.0
Macromedia Jrun 3.1
Macromedia Jrun 4.0
445
VMScore
CVE-2001-0926
SSIFilter in Allaire JRun 3.1, 3.0 and 2.3.3 allows remote malicious users to obtain source code for Java server pages (.jsp) and other files in the web root via an HTTP request for a non-existent SSI page, in which the request's body has an #include statement.
Macromedia Jrun 2.3.3
Macromedia Jrun 3.0
Macromedia Jrun 3.1
668
VMScore
CVE-2005-4342
ColdFusion Sandbox on Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 does not throw an exception if the SecurityManager is disabled, which might allow remote malicious users to "bypass security controls," aka "JRun Clustered Sandbox Secu...
Macromedia Coldfusion 7.0
Macromedia Coldfusion 6.0
Macromedia Coldfusion 6.1
445
VMScore
CVE-2005-4343
Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 allows remote malicious users to attach arbitrary files and send mail via a crafted Subject field, which is not properly handled by the CFMAIL tag in applications that use ColdFusion, aka "CFMAIL inje...
Macromedia Coldfusion 6.1
Macromedia Coldfusion 6.0
Macromedia Coldfusion 7.0
445
VMScore
CVE-2001-1510
Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote malicious users to read arbitrary files and directories by appending (1) "%3f.jsp", (2) "?.jsp" or (3) "?"...
Macromedia Jrun 2.3.3
Macromedia Jrun 3.1
Macromedia Jrun 3.0
1000
VMScore
CVE-2002-0665
Macromedia JRun Administration Server allows remote malicious users to bypass authentication on the login form via an extra slash (/) in the URL.
Macromedia Jrun 4.0
Macromedia Jrun 3.0
Macromedia Jrun 3.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »