Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
java web console vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-0390
Unspecified vulnerability in Oracle Solaris 10 allows remote malicious users to affect integrity via unknown vectors related to Java Web Console.
Sun Sunos 5.10
NA
CVE-2013-5839
Unspecified vulnerability in Oracle Solaris 10 allows remote malicious users to affect integrity via unknown vectors related to Oracle Java Web Console.
Sun Sunos 5.10
NA
CVE-2013-1614
Multiple cross-site scripting (XSS) vulnerabilities in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x prior to 4.8.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified vector...
Symantec Security Information Manager 4.7.0
Symantec Security Information Manager 4.8.0
Symantec Security Information Manager 4.7.1
Symantec Security Information Manager 4.7.2
Symantec Security Information Manager 4.7.3
Symantec Security Information Manager 4.7.4
Symantec Security Information Manager Appliance -
NA
CVE-2013-1615
The management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x prior to 4.8.1 allows remote malicious users to obtain sensitive information via unspecified web-GUI API calls.
Symantec Security Information Manager 4.7.1
Symantec Security Information Manager 4.7.2
Symantec Security Information Manager 4.7.3
Symantec Security Information Manager 4.7.4
Symantec Security Information Manager Appliance -
Symantec Security Information Manager 4.7.0
Symantec Security Information Manager 4.8.0
NA
CVE-2012-3315
The Java servlets in the management console in IBM Tivoli Federated Identity Manager (TFIM) up to and including 6.2.2 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) prior to 6.2.2 do not require authentication for all resource downloads, which allows remote malic...
Ibm Tivoli Federated Identity Manager
Ibm Tivoli Federated Identity Manager 6.2.0.9
Ibm Tivoli Federated Identity Manager 6.2.0.2
Ibm Tivoli Federated Identity Manager 6.2.0.8
Ibm Tivoli Federated Identity Manager 6.2.0.3
Ibm Tivoli Federated Identity Manager 6.2.1
Ibm Tivoli Federated Identity Manager 6.1.1
Ibm Tivoli Federated Identity Manager 6.2.0
Ibm Tivoli Federated Identity Manager 6.2.0.1
Ibm Tivoli Federated Identity Manager Business Gateway 6.1.1
Ibm Tivoli Federated Identity Manager Business Gateway 6.2.0.1
Ibm Tivoli Federated Identity Manager Business Gateway 6.2.0
Ibm Tivoli Federated Identity Manager Business Gateway
Ibm Tivoli Federated Identity Manager Business Gateway 6.2.0.8
Ibm Tivoli Federated Identity Manager Business Gateway 6.2.0.3
Ibm Tivoli Federated Identity Manager Business Gateway 6.2.0.2
NA
CVE-2012-4933
The rtrlet web application in the Web Console in Novell ZENworks Asset Management (ZAM) 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the (1) GetFile_Password and (2) GetConfigInfo_Password operations, which allows remote malicious users to obta...
Novell Zenworks Asset Management 7.5
NA
CVE-2010-5192
Cross-site scripting (XSS) vulnerability in the Java Management Console in Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vec...
Bluecoat Sgos 5.4.5
Bluecoat Sgos 4.2.3.4
Bluecoat Sgos 4.2.4.1
Bluecoat Sgos 4.2.5.1
Bluecoat Sgos 4.2.7.1
Bluecoat Sgos 4.2.6
Bluecoat Sgos 4.2.2.2
Bluecoat Sgos 4.2.1.2
Bluecoat Sgos 4.2.6.1
Bluecoat Sgos 4.2.6.4
Bluecoat Sgos 4.1.2.1
Bluecoat Sgos 3.2.6
Bluecoat Sgos
Bluecoat Sgos 4.2.2
Bluecoat Sgos 4.2.3
Bluecoat Sgos 4.2.3.7
Bluecoat Sgos 4.2.3.12
Bluecoat Sgos 5.2.2.4
Bluecoat Sgos 6.1.2
Bluecoat Sgos 5.5.4
Bluecoat Sgos 4.2.5
Bluecoat Sgos 4.2.2.1
NA
CVE-2010-3544
Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java System Web Server) component in Oracle Sun Products Suite 7.0 allows remote malicious users to affect integrity and availability via unknown vectors related to Administration. NOTE: the previous information was ...
Oracle Sun Products Suite 7.0
NA
CVE-2010-2103
Cross-site scripting (XSS) vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote malicious us...
Apache Axis2 1.4.1
Apache Axis2 1.5.1
1 EDB exploit
NA
CVE-2010-0738
The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 prior to 4.2.0.CP09 and 4.3 prior to 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote malicious users to send requests...
Redhat Jboss Enterprise Application Platform 4.2.0
Redhat Jboss Enterprise Application Platform 4.2
Redhat Jboss Enterprise Application Platform 4.3.0
Redhat Jboss Enterprise Application Platform 4.3
4 EDB exploits
2 Nmap scripts
4 Github repositories
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »