Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glassfish server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-15113
Core Security Technologies Advisory - The Administration Console of Oracle GlassFish Server, which is listening by default on port 4848/TCP, is prone to an authentication bypass vulnerability. This vulnerability can be exploited by remote attackers to access sensitive data on the...
NA
CVE-2011-0807
Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to Administration.
Oracle Glassfish Server 3.0.1
Oracle Glassfish Server 2.1
Oracle Glassfish Server 2.1.1
Sun Java System Application Server 9.1
1 EDB exploit
NA
CVE-2010-4438
Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service (JMS).
Oracle Glassfish Server 2.1
Oracle Glassfish Server 2.1.1
Oracle Glassfish Server 3.0.1
Oracle Java System Message Queue 4.1
NA
CVE-2010-2397
Unspecified vulnerability in Oracle Sun Java System Application Server 8.0, 8.1, and 8.2; and GlassFish Enterprise Server 2.1.1; allows local users to affect confidentiality and integrity, related to the GUI.
Oracle Java System Application Server 8.1
Oracle Java System Application Server 8.2
Oracle Java System Application Server 8.0
Oracle Glassfish Server 2.1.1
NA
CVE-2009-1553
Multiple cross-site scripting (XSS) vulnerabilities in the Admin Console in Sun GlassFish Enterprise Server 2.1 allow remote malicious users to inject arbitrary web script or HTML via the query string to (1) applications/applications.jsf, (2) configuration/configuration.jsf, (3) ...
Oracle Glassfish Server 2.1
8 EDB exploits
NA
CVE-2009-1554
Cross-site scripting (XSS) vulnerability in ThemeServlet.java in Sun Woodstock 4.2, as used in Sun GlassFish Enterprise Server and other products, allows remote malicious users to inject arbitrary web script or HTML via a UTF-7 string in the PATH_INFO, which is displayed on the 4...
Sun Woodstock 4.2
1 EDB exploit
NA
CVE-2008-5266
Cross-site scripting (XSS) vulnerability in configuration/httpListenerEdit.jsf in the GlassFish 2 UR2 b04 webadmin interface in Sun Java System Application Server 9.1_01 build b09d-fcs and 9.1_02 build b04-fcs allows remote malicious users to inject arbitrary web script or HTML v...
Sun Java System Application Server 9.1 02
Sun Java System Application Server 9.1 01
Oracle Glassfish Server 2.0
1 EDB exploit
NA
CVE-2008-2751
Multiple cross-site scripting (XSS) vulnerabilities in the Glassfish webadmin interface in Sun Java System Application Server 9.1_01 allow remote malicious users to inject arbitrary web script or HTML via the (1) propertyForm:propertyContentPage:propertySheet:propertSectionTextFi...
Sun Java System Application Server 9.1 01
Oracle Glassfish Server 1.0
Oracle Glassfish Server 2.1.1
Oracle Glassfish Server 3.0.1
Oracle Glassfish Server 2.1
Oracle Glassfish Server 2.0
Oracle Glassfish Server 3.0
7 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6