Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bea weblogic server vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2005-1744
BEA WebLogic Server and WebLogic Express 7.0 through Service Pack 5 does not log out users when an application is redeployed, which allows those users to continue to access the application without having to log in again, which may be in violation of newly changed security constra...
Bea Weblogic Server
7.5
CVSSv3
CVE-2000-0499
The default configuration of BEA WebLogic 3.1.8 up to and including 4.5.1 allows a remote malicious user to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
Bea Weblogic Server
NA
CVE-2010-2375
Package/Privilege: Plugins for Apache, Sun and IIS web servers Unspecified vulnerability in the WebLogic Server component in Oracle Fusion Middleware 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, 10.3.2, and 10.3.3 allows remote malicious users to affect confidentiality and inte...
Oracle Weblogic Server 10.3.2.0.0
Bea Weblogic Server 9.2
Bea Weblogic Server 9.0
Bea Weblogic Server 9.1
Bea Systems Weblogic Server 10.0
Oracle Weblogic Server 10.3.3.0.0
Bea Weblogic Server 7.0
Bea Weblogic Server 8.1
1 EDB exploit
NA
CVE-2010-0068
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.0, 9.1, 9.2MP2, and 10.0 allows remote malicious users to affect confidentiality via unknown vectors.
Oracle Bea Product Suite 9.2
Oracle Bea Product Suite 9.0
Oracle Bea Product Suite 9.1
Oracle Bea Product Suite 10.0
NA
CVE-2010-0069
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 7.0, SP7, 8.1SP6, 9.0, 9.1, 9.2MP3, 10.0MP1, and 10.3.0 allows remote malicious users to affect integrity via unknown vectors.
Oracle Bea Product Suite 9.1
Oracle Bea Product Suite 7.0
Oracle Bea Product Suite 9.0
Oracle Bea Product Suite 10.3.0
Oracle Bea Product Suite 8.1
Oracle Bea Product Suite 9.2
Oracle Bea Product Suite 10.0
NA
CVE-2010-0074
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 7.0SP7, 8.1SP6, 9.0, 9.1, 9.2MP3, 10.0MP2, and 10.3.1 allows remote malicious users to affect availability via unknown vectors.
Oracle Bea Product Suite 7.0
Oracle Bea Product Suite 8.1
Oracle Bea Product Suite 10.3.1
Oracle Bea Product Suite 9.0
Oracle Bea Product Suite 9.1
Oracle Bea Product Suite 9.2
Oracle Bea Product Suite 10.0
NA
CVE-2010-0078
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.0, 9.1, 9.2MP3, 10.0MP2, and 10.3.1 allows remote malicious users to affect availability via unknown vectors.
Oracle Bea Product Suite 10.3.1
Oracle Bea Product Suite 10.0
Oracle Bea Product Suite 9.0
Oracle Bea Product Suite 9.1
Oracle Bea Product Suite 9.2
NA
CVE-2009-3399
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 7.0.6 and 8.1.5 allows remote malicious users to affect integrity, related to WLS Console.
Oracle Bea Product Suite 7.0.6
NA
CVE-2009-3396
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.0, 9.1, 9.2.3, 10.0.1, and 10.3 allows remote malicious users to affect integrity, related to WLS Console.
Oracle Bea Product Suite 9.2.3
Oracle Bea Product Suite 10.0.1
Oracle Bea Product Suite 10.3
Oracle Bea Product Suite 9.0
Oracle Bea Product Suite 9.1
NA
CVE-2009-1974
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to the Servlet Container Packag...
Oracle Bea Product Suite 9.0
Oracle Bea Product Suite 10.3
Oracle Bea Product Suite 10.0
Oracle Bea Product Suite 9.2
Oracle Bea Product Suite 7.0
Oracle Bea Product Suite 8.1
Oracle Bea Product Suite 9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »