Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spi labs vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2003-0411
Sun ONE Application Server 7.0 for Windows 2000/XP allows remote malicious users to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension.
Oracle Sun One Application Server 7.0
1 EDB exploit
NA
CVE-2003-0413
Cross-site scripting (XSS) vulnerability in the webapps-simple sample application for (1) Sun ONE Application Server 7.0 for Windows 2000/XP or (2) Sun Java System Web Server 6.1 allows remote malicious users to insert arbitrary web script or HTML via an HTTP request that generat...
Sun One Application Server 7.0
1 EDB exploit
NA
CVE-2005-1112
IBM WebSphere Application Server 6.0 and previous versions, when sharing the document root of the web server, allows remote malicious users to obtain the source code for Java Server Pages (.jsp) via an HTTP request with an invalid Host header, which causes the page to be processe...
Ibm Websphere Application Server 5.0.2.5
Ibm Websphere Application Server 5.0.2.6
Ibm Websphere Application Server 5.0.2.7
Ibm Websphere Application Server 5.1.1
Ibm Websphere Application Server 5.1.1.1
Ibm Websphere Application Server 5.0
Ibm Websphere Application Server 5.0.1
Ibm Websphere Application Server 5.0.2.8
Ibm Websphere Application Server 5.0.2.9
Ibm Websphere Application Server 5.1.1.2
Ibm Websphere Application Server 5.1.1.3
Ibm Websphere Application Server 5.0.2
Ibm Websphere Application Server 5.0.2.1
Ibm Websphere Application Server 5.1.0
Ibm Websphere Application Server 5.1.0.2
Ibm Websphere Application Server 6.0
Ibm Websphere Application Server 5.0.2.3
Ibm Websphere Application Server 5.0.2.4
Ibm Websphere Application Server 5.1.0.4
Ibm Websphere Application Server 5.1.0.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started