Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mortbay jetty 6.1.20 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2009-3579
Cross-site scripting (XSS) vulnerability in the CookieDump.java sample application in Mort Bay Jetty 6.1.19 and 6.1.20 allows remote malicious users to inject arbitrary web script or HTML via the Value parameter in a GET request to cookie/.
Mortbay Jetty 6.1.19
Mortbay Jetty 6.1.20
435
VMScore
CVE-2009-4612
Multiple cross-site scripting (XSS) vulnerabilities in the WebApp JSP Snoop page in Mort Bay Jetty 6.1.x up to and including 6.1.21 allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to the default URI under (1) jspsnoop/, (2) jspsnoop/ERROR/, a...
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.14
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.1
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.7
Mortbay Jetty 6.1.20
Mortbay Jetty 6.1.0
Mortbay Jetty 6.1.21
Mortbay Jetty 6.1.9
Mortbay Jetty 6.1.10
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.3
Mortbay Jetty 6.1.19
Mortbay Jetty 6.1.11
Mortbay Jetty 6.1.8
1 EDB exploit
435
VMScore
CVE-2009-4610
Multiple cross-site scripting (XSS) vulnerabilities in Mort Bay Jetty 6.x and 7.0.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the query string to jsp/dump.jsp in the JSP Dump feature, or the (2) Name or (3) Value parameter to the default URI for ...
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.8
Mortbay Jetty 6.1.7
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.10
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.20
Mortbay Jetty 6.1.1
Mortbay Jetty 6.1.0
Mortbay Jetty 6.0.0
Mortbay Jetty 7.0.0
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.3
Mortbay Jetty 6.1.19
Mortbay Jetty 6.1.14
Mortbay Jetty 6.1.9
Mortbay Jetty 6.1.11
Mortbay Jetty 6.0.2
Mortbay Jetty 6.0.1
1 EDB exploit
668
VMScore
CVE-2009-4611
Mort Bay Jetty 6.x up to and including 6.1.22 and 7.0.0 writes backtrace data without sanitizing non-printable characters, which might allow remote malicious users to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request cont...
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.7
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.0
Mortbay Jetty 6.0.0
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.11
Mortbay Jetty 6.1.8
Mortbay Jetty 6.1.20
Mortbay Jetty 6.1.1
Mortbay Jetty 6.0.1
Mortbay Jetty 6.1.3
Mortbay Jetty 6.1.19
Mortbay Jetty 6.1.14
Mortbay Jetty 6.1.9
Mortbay Jetty 6.1.10
Mortbay Jetty 6.1.5
Mortbay Jetty 6.0.2
Mortbay Jetty 7.0.0
445
VMScore
CVE-2009-4609
The Dump Servlet in Mort Bay Jetty 6.x and 7.0.0 allows remote malicious users to obtain sensitive information about internal variables and other data via a request to a URI ending in /dump/, as demonstrated by discovering the value of the getPathTranslated variable.
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.7
Mortbay Jetty 6.1.5
Mortbay Jetty 6.1.20
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.0
Mortbay Jetty 6.0.0
Mortbay Jetty 6.1.9
Mortbay Jetty 6.1.10
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.3
Mortbay Jetty 6.1.19
Mortbay Jetty 6.0.2
Mortbay Jetty 7.0.0
Mortbay Jetty 6.1.6
Mortbay Jetty 6.1.1
Mortbay Jetty 6.1.14
Mortbay Jetty 6.1.11
Mortbay Jetty 6.1.8
Mortbay Jetty 6.0.1
446
VMScore
CVE-2011-4461
Jetty 8.1.0.RC2 and previous versions computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote malicious users to cause a denial of service (CPU consumption) by sending many crafted parameters.
Oracle Sun Storage Common Array Manager 6.9.0
Mortbay Jetty 7.0.0
Mortbay Jetty 6.1.16
Mortbay Jetty 6.1.15
Mortbay Jetty 6.1.11
Mortbay Jetty 6.1.12
Mortbay Jetty 6.1.4
Mortbay Jetty 6.1.2
Mortbay Jetty 6.1.1
Mortbay Jetty 6.1.0
Mortbay Jetty 6.0.0
Mortbay Jetty 5.1.14
Mortbay Jetty 5.0
Mortbay Jetty 5.1.12
Mortbay Jetty 5.1.11
Mortbay Jetty 5.1.5
Mortbay Jetty 5.1.0
Mortbay Jetty 5.1
Mortbay Jetty 5.1.3
Mortbay Jetty 4.2.17
Mortbay Jetty 4.2.22
Mortbay Jetty 4.2.15
1 Article
383
VMScore
CVE-2009-5048
Cookie Dump Servlet stored XSS vulnerability in jetty though 6.1.20.
Mortbay Jetty
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started