Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bugsec ltd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1229
Cross-site scripting (XSS) vulnerability in Edit.jsp in JSPWiki 2.4.104 and 2.5.139 allows remote malicious users to inject arbitrary web script or HTML via the editor parameter, a different vector than CVE-2007-5120.b.
Jspwiki Jspwiki 2.5.139 Beta
Jspwiki Jspwiki 2.4.104
Jspwiki Jspwiki 2.5.139
1 EDB exploit
NA
CVE-2008-1230
Unrestricted file upload vulnerability in JSPWiki 2.4.104 and 2.5.139 allows remote malicious users to upload and execute arbitrary .jsp files via an unspecified manipulation that attaches a .jsp file to an "entry page."
Jspwiki Jspwiki 2.5.139 Beta
Jspwiki Jspwiki 2.4.104
Jspwiki Jspwiki 2.5.139
1 EDB exploit
NA
CVE-2008-1231
Directory traversal vulnerability in Edit.jsp in JSPWiki 2.4.104 and 2.5.139 allows remote malicious users to include and execute arbitrary local .jsp files, and obtain sensitive information, via a .. (dot dot) in the editor parameter.
Jspwiki Jspwiki 2.5.139 Beta
Jspwiki Jspwiki 2.4.104
Jspwiki Jspwiki 2.5.139
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started