Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
java vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2007-1681
Format string vulnerability in libwebconsole_services.so in Sun Java Web Console 2.2.2 up to and including 2.2.5 allows remote malicious users to cause a denial of service (application crash), obtain sensitive information, and possibly execute arbitrary code via unspecified vecto...
Sun Java Web Console 2.2.4
Sun Java Web Console 2.2.5
Sun Java Web Console 2.2.2
Sun Java Web Console 2.2.3
Sun Solaris 10.0
890
VMScore
CVE-2008-4541
Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 up to and including 4.0.7 allows remote malicious users to execute arbitrary code via a crafted HTTP GET request.
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 4.0.1
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4.0.6
Sun Java System Web Proxy Server 4.0.5
Sun Java System Web Proxy Server 4.0.7
Sun Java System Web Proxy Server 4.0.2
605
VMScore
CVE-2006-6276
HTTP request smuggling vulnerability in Sun Java System Proxy Server prior to 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote malicious users to bypass HTTP request filtering, hijack web sessions, perform cross-site scripti...
Sun Java System Web Server 6.0
Sun Java System Web Server 6.1
Sun Java System Application Server 8.1
Sun One Application Server 7.0
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 3.6
Sun Java System Application Server 7.0
Sun Java System Web Proxy Server -
668
VMScore
CVE-2009-1099
Integer signedness error in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and previous versions, and 6 Update 12 and previous versions, allows remote malicious users to access files or execute arbitrary code via crafted glyph descriptions in a Typ...
Sun Java Runtime Environment 6.0
Sun Java Se Development Kit
Sun Java Runtime Environment 5.0
668
VMScore
CVE-2002-2005
Unknown vulnerability in Java web start 1.0.1_01, 1.0.1, 1.0 and 1.0.1.01 (HP-UX 11.x only) allows malicious users to gain access to restricted resources via unknown attack vectors.
Sun Java Web Start 1.0
Sun Java Web Start 1.0.1
Sun Java Web Start 1.0.1 01
356
VMScore
CVE-2021-2438
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromis...
Oracle Java Virtual Machine 12.1.0.2
Oracle Java Virtual Machine 12.2.0.1
Oracle Java Virtual Machine 19c
NA
CVE-2023-29637
Cross Site Scripting (XSS) vulnerability in Qbian61 forum-java, allows malicious users to inject arbitrary web script or HTML via editing the article content in the "article editor" page.
Qbian61 Forum-java Project Qbian61 Forum-java -
NA
CVE-2022-24913
Versions of the package com.fasterxml.util:java-merge-sort prior to 1.1.0 are vulnerable to Insecure Temporary File in the StdTempFileProvider() function in StdTempFileProvider.java, which uses the permissive File.createTempFile() function, exposing temporary file contents.
Java-merge-sort Project Java-merge-sort
435
VMScore
CVE-2005-3966
Cross-site scripting (XSS) vulnerability in search.jsp in Java Search Engine (JSE) 0.9.34 allows remote malicious users to inject arbitrary web script or HTML via the q parameter.
Java Search Engine Java Search Engine 0.9.34
1 EDB exploit
383
VMScore
CVE-2007-0628
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Access Manager 6.1, 6.2, 6 2005Q1 (6.3), and 7 2005Q4 (7.0) prior to 20070129 allow remote malicious users to inject arbitrary web script or HTML via the (1) goto or (2) gx-charset parameter. NOTE: some of the...
Sun Java System Access Manager 7.0
Sun Java System Access Manager 6.2
Sun Java System Access Manager 6.3
Sun Java System Access Manager 6.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »