Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
caucho technology vulnerabilities and exploits
(subscribe to this query)
9.4
CVSSv2
CVE-2007-2439
Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and previous versions for Windows allows remote malicious users to cause a denial of service (device hang) and read data from a COM or LPT device via a DOS device name with an arbitrary extension.
Caucho Technology Resin
5
CVSSv2
CVE-2007-2440
Directory traversal vulnerability in Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and previous versions for Windows allows remote malicious users to read certain files via a .. (dot dot) in a URI containing a "\web-inf" sequence.
Caucho Technology Resin
1 EDB exploit
5
CVSSv2
CVE-2001-0304
Directory traversal vulnerability in Caucho Resin 1.2.2 allows remote malicious users to read arbitrary files via a "\.." (dot dot) in a URL request.
Caucho Technology Resin 1.2.2
1 EDB exploit
5
CVSSv2
CVE-2002-1987
Directory traversal vulnerability in view_source.jsp in Resin 2.1.2 allows remote malicious users to read arbitrary files via a "\.." (backslash dot dot).
Caucho Technology Resin 2.1.2
5
CVSSv2
CVE-2002-1988
Resin 2.1.1 allows remote malicious users to cause a denial of service (memory consumption and hang) via a URL with long variables for non-existent resources.
Caucho Technology Resin 2.1.1
5
CVSSv2
CVE-2004-0280
Caucho Technology Resin 2.1.12 allows remote malicious users to view JSP source via an HTTP request to a .jsp file that ends in a "%20" (encoded space character), e.g. index.jsp%20.
Caucho Technology Resin 2.1.12
5
CVSSv2
CVE-2002-1989
Resin 2.1.1 allows remote malicious users to cause a denial of service (thread and connection consumption) via multiple URL requests containing the DOS 'CON' device name and a registered file extension such as .jsp or .xtp.
Caucho Technology Resin 2.1.1
5
CVSSv2
CVE-2004-0281
Caucho Technology Resin 2.1.12 allows remote malicious users to gain sensitive information and view the contents of the /WEB-INF/ directory via an HTTP request for "WEB-INF..", which is equivalent to "WEB-INF" in Windows.
Caucho Resin 2.1.12
1 EDB exploit
4.3
CVSSv2
CVE-2010-2032
Multiple cross-site scripting (XSS) vulnerabilities in resin-admin/digest.php in Caucho Technology Resin Professional 3.1.5, 3.1.10, 4.0.6, and possibly other versions allow remote malicious users to inject arbitrary web script or HTML via the (1) digest_realm or (2) digest_usern...
Caucho Resin 3.1.10
Caucho Resin 3.1.5
Caucho Resin 4.0.6
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2