Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
java system web server vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-1796
Cross-site scripting (XSS) vulnerability in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allows remote malicious users to inject arbitrary web script or HTML via vectors related to an error page.
Sun Java System Portal Server 7.1
Sun Java System Portal Server 7.2
Sun Java System Portal Server 6.3.1
6.5
CVSSv2
CVE-2008-3425
Unspecified vulnerability in the Sun Java System Web Server 7.0 plugin in Sun N1 Service Provisioning System (SPS) 5.2 and 6.0 allows remote authenticated SPS users to gain administrative access to the web server via unknown attack vectors.
Sun N1 Service Provisioning System 6.0
Sun Java System Web Server Plugin 7.0
Sun N1 Service Provisioning System 5.2
5
CVSSv2
CVE-2009-0278
Sun Java System Application Server (AS) 8.1 and 8.2 allows remote malicious users to read the Web Application configuration files in the (1) WEB-INF or (2) META-INF directory via a malformed request.
Sun Java System Application Server 8.2
Sun Java System Application Server 8.1
4.3
CVSSv2
CVE-2008-6192
Multiple cross-site scripting (XSS) vulnerabilities in unspecified Portlets in Sun Java System Portal Server 7.0 and 7.1 allow remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Sun Java System Portal Server 7.0
Sun Java System Portal Server 7.1
4.3
CVSSv2
CVE-2008-5098
Cross-site scripting (XSS) vulnerability in Sun Java System Messaging Server 6.2 and 6.3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2007-2904.
Sun Java System Messaging Server 6.2
Sun Java System Messaging Server 6.3
5
CVSSv2
CVE-2008-5549
Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote malicious users to access local files and read the product's configuration information via unknown vectors related to "access to secure files by T...
Sun Java System Portal Server 7.1
Sun Java System Portal Server 7.2
2.6
CVSSv2
CVE-2006-3225
Cross-site scripting (XSS) vulnerability in Sun ONE Application Server 7 before Update 9, Java System Application Server 7 2004Q2 before Update 5, and Java System Application Server Enterprise Edition 8.1 2005 Q1 allows remote malicious users to inject arbitrary HTML or web scrip...
Sun One Application Server
Sun Java System Application Server 8.1
Sun Java System Application Server
4.3
CVSSv2
CVE-2009-1218
Multiple cross-site scripting (XSS) vulnerabilities in Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 up to and including 6.3-7.01 allow remote malicious users to inject arbitrary web script or HTML via (1) the fmt-out ...
Sun Java System Calendar Server 6
Sun Java System Calendar Server 6.3
Sun One Calendar Server 6.0
1 EDB exploit
4.3
CVSSv2
CVE-2009-4187
Multiple cross-site scripting (XSS) vulnerabilities in the Gateway component in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Sun Java System Portal Server 7.2
Sun Java System Portal Server 7.1
Sun Java System Portal Server 6.3.1
Sun Java System Portal Server 6.3.1
Sun Java System Portal Server 7.1
Sun Java System Portal Server 7.2
5
CVSSv2
CVE-2009-1219
Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 up to and including 6.3-7.01 allows remote malicious users to cause a denial of service (daemon crash) via multiple requests to the default URI with alphabetic characters i...
Sun Java System Calendar Server 6
Sun Java System Calendar Server 6.3
Sun One Calendar Server 6.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »