Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web server vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2005-2453
Cross-site scripting (XSS) vulnerability in NetworkActiv Web Server 1.0, 2.0.0.6, 3.0.1.1, and 3.5.13, and possibly other versions, allows remote malicious users to inject arbitrary web script or HTML via the query string.
Networkactiv Networkactiv Web Server 3.0.1.1
Networkactiv Networkactiv Web Server 3.5.13
Networkactiv Networkactiv Web Server 1.0
Networkactiv Networkactiv Web Server 2.0.0.6
1 EDB exploit
195
VMScore
CVE-2002-1785
Cross-site scripting (XSS) vulnerability in Zeus Administration Server in Zeus Web Server 4.0 up to and including 4.1r2 allows remote authenticated users to inject arbitrary web script or HTML via the section parameter to index.fcgi.
Zeus Technologies Zeus Web Server 4.0
Zeus Technologies Zeus Web Server 4.1
Zeus Technologies Zeus Web Server 4.1 R1
Zeus Technologies Zeus Web Server 4.1 R2
Zeus Technologies Zeus Web Server 4.1 R3
Zeus Technologies Zeus Web Server 4.1 R4
1 EDB exploit
383
VMScore
CVE-2008-2410
Cross-site scripting (XSS) vulnerability in the servlet engine and Web container in the Web Server service in IBM Lotus Domino prior to 7.0.3 FP1, and 8.x prior to 8.0.1, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Lotus Domino Web Server 7.0
Ibm Lotus Domino Web Server 7.0.3
Ibm Lotus Domino Web Server
Ibm Lotus Domino Web Server 7.0.1
Ibm Lotus Domino Web Server 7.0.2
383
VMScore
CVE-2007-6571
Cross-site scripting (XSS) vulnerability in Sun Java System Web Proxy Server 3.6 before SP11 on Windows allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6611356.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Proxy Server 4.0
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4.0.5
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Proxy Server 4.0.3
383
VMScore
CVE-2007-6572
Cross-site scripting (XSS) vulnerability in Sun Java System Web Server 6.1 before SP8 and 7.0 before Update 1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566204.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Web Server 7.0
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4.0.5
383
VMScore
CVE-2007-6570
Cross-site scripting (XSS) vulnerability in the View URL Database functionality in Sun Java System Web Proxy Server 4.x prior to 4.0.6 and 3.x prior to 3.6 SP11 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566309.
Sun Java System Web Proxy Server 3.6
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4.0.5
Sun Java System Web Proxy Server 4.0
Sun Java System Web Server 7.0
445
VMScore
CVE-2009-4529
InterVations NaviCOPA Web Server 3.0.1.2 and previous versions allows remote malicious users to obtain the source code for a web page via a trailing encoded space character in a URI, as demonstrated by /index.html%20 and /index.php%20 URIs.
Intervations Navicopa Web Server
Intervations Navicopa Web Server 3.01
Intervations Navicopa Web Server 2.01
231
VMScore
CVE-2003-1577
Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote malicious users to inject arbitrary text into log files, and conduct cross-site scripting (XSS) attacks involving the iPlanet Log Analyzer,...
Sun One Web Server 4.1
Sun One Web Server
Sun One Web Server 6.0
383
VMScore
CVE-2003-1578
Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote malicious users to hide HTTP requests from the log-preview functionality by accompanying the requests with crafted DNS responses specifying...
Sun One Web Server 4.1
Sun One Web Server
Sun One Web Server 6.0
505
VMScore
CVE-2003-0338
Directory traversal vulnerability in WsMp3 daemon (WsMp3d) 0.0.10 and previous versions allows remote malicious users to read and execute arbitrary files via .. (dot dot) sequences in HTTP GET or POST requests.
Wsmp3 Wsmp3 Daemon 0.0.8
Wsmp3 Wsmp3 Daemon 0.0.9
Wsmp3 Wsmp3 Web Server 0.0.7
Wsmp3 Wsmp3 Daemon 0.0.10
Wsmp3 Wsmp3 Web Server 0.0.5
Wsmp3 Wsmp3 Web Server 0.0.6
Wsmp3 Wsmp3 Web Server 0.0.3
Wsmp3 Wsmp3 Web Server 0.0.4
Wsmp3 Wsmp3 Web Server 0.0.1
Wsmp3 Wsmp3 Web Server 0.0.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »