Lucene search
K

141 matches found

Prion
Prion
added 2009/04/17 2:30 p.m.16 views

Directory traversal

Multiple directory traversal vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 on Windows allow remote attackers to upload files to arbitrary directories via directory traversal sequences in the 1 group, 2 artifact, 3 version, or 4 fileType...

9.4CVSS7.2AI score0.35929EPSS
Exploits1References11Affected Software1
NVD
NVD
added 2009/04/17 2:30 p.m.20 views

CVE-2008-5518

Multiple directory traversal vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 on Windows allow remote attackers to upload files to arbitrary directories via directory traversal sequences in the 1 group, 2 artifact, 3 version, or 4 fileType...

9.4CVSS6.9AI score0.35929EPSS
Exploits1References11
Prion
Prion
added 2009/04/17 2:30 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 allow remote attackers to inject arbitrary web script or HTML via the 1 name, 2 ip, 3 username, or 4 description parameter to console/portal/Server/Monitorin...

4.3CVSS6AI score0.18003EPSS
Exploits2References7Affected Software1
Prion
Prion
added 2009/04/17 2:30 p.m.19 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 allow remote attackers to hijack the authentication of administrators for requests that 1 change the web administration password, 2 upload application...

6.8CVSS7.8AI score0.11059EPSS
Exploits2References7Affected Software1
Cvelist
Cvelist
added 2009/04/17 2:0 p.m.24 views

CVE-2008-5518

Multiple directory traversal vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 on Windows allow remote attackers to upload files to arbitrary directories via directory traversal sequences in the 1 group, 2 artifact, 3 version, or 4 fileType...

7.8AI score0.35929EPSS
Exploits1References11
Cvelist
Cvelist
added 2009/04/17 2:0 p.m.30 views

CVE-2009-0038

Multiple cross-site scripting XSS vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 allow remote attackers to inject arbitrary web script or HTML via the 1 name, 2 ip, 3 username, or 4 description parameter to console/portal/Server/Monitorin...

6.9AI score0.18003EPSS
Exploits2References7
CVE
CVE
added 2009/04/17 2:0 p.m.77 views

CVE-2008-5518

CVE-2008-5518 corresponds to multiple directory traversal vulnerabilities in the Apache Geronimo Application Server 2.1–2.1.3 on Windows, affecting the web administration console. A remote attacker could upload files to arbitrary directories via traversal sequences in parameters for the Services/...

9.4CVSS7.6AI score0.35929EPSS
Exploits1References11Affected Software1
CVE
CVE
added 2009/04/17 2:0 p.m.69 views

CVE-2009-0038

CVE-2009-0038 refers to multiple cross-site scripting (XSS) vulnerabilities in the Apache Geronimo web administration console (versions 2.1 to 2.1.3). The vulnerabilities allow remote attackers to inject arbitrary web script or HTML via parameters (name, ip, username, description) to console/port...

4.3CVSS6.7AI score0.18003EPSS
Exploits2References7Affected Software1
CVE
CVE
added 2009/04/17 2:0 p.m.85 views

CVE-2009-0039

Apache Geronimo Application Server CSRF vulnerabilities (CVE-2009-0039) affect the web administration console in Geronimo 2.1–2.1.3. The issue allows remote attackers to hijack administrator sessions and perform actions (e.g., change password, upload apps, Shutdown) via forgery. The CVE descripti...

6.8CVSS7.9AI score0.11059EPSS
Exploits2References7Affected Software1
securityvulns
securityvulns
added 2009/04/17 12:0 a.m.35 views

Apache Geronimo multiple security vulnerabilities

Crossite scripting, directory traversal...

2.4AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2009/04/17 12:0 a.m.50 views

[DSECRG-09-018] Apache Geronimo - Directory Traversal vulnerabilities

Original Advisory: http://dsecrg.com/pages/vul/show.php?id=118 Digital Security Research Group DSecRG Advisory DSECRG-09-018 Application: Apache Geronimo Application Server Versions Affected: 2.1 - 2.1.3 Vendor URL: http://geronimo.apache.org/ Bug: Directory Traversal File Upload Exploits: YES...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2009/04/17 12:0 a.m.41 views

[DSECRG-09-020] Apache Geronimo - XSRF vulnerabilities

Original Advisory: http://dsecrg.com/pages/vul/show.php?id=120 Digital Security Research Group DSecRG Advisory DSECRG-09-020 Application: Apache Geronimo Application Server Versions Affected: 2.1 - 2.1.3 Vendor URL: http://geronimo.apache.org/ Bug: Multiple XSRF Vulnerabilities Exploits: YES...

Exploits0
securityvulns
securityvulns
added 2009/04/17 12:0 a.m.44 views

[DSECRG-09-019] Apache Geronimo - XSS vulnerabilities.txt

Original advisory http://dsecrg.com/pages/vul/show.php?id=119 Digital Security Research Group DSecRG Advisory DSECRG-09-019 Application: Apache Geronimo Application Server Versions Affected: 2.1 - 2.1.3 Vendor URL: http://geronimo.apache.org/ Bug: Multiple XSS Vulnerabilities Exploits: YES...

Exploits0
seebug.org
seebug.org
added 2009/04/17 12:0 a.m.22 views

Apache Geronimo <= 2.1.3 Multiple Directory Traversal Vulnerabilities

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-09-018 Application: Apache Geronimo Application Server Versions Affected: 2.1 - 2.1.3 Vendor URL: http://geronimo.apache.org/ Bug: Directory Traversal File Upload Exploits: YES Reported: 10.12.2008 Vendor...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/04/16 12:0 a.m.14 views

Apache Geronimo 2.1.x - consoleportalServerMonitoring Multiple Cross-Site Scripting Vulnerabilities

Apache Geronimo 2.1.x - consoleportalServerMonitoring Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/34562/info Apache Geronimo Application Server is prone to multiple remote vulnerabilities: - Multiple directory-traversal vulnerabilities - A cross-site...

7AI score
Exploits0
exploitpack
exploitpack
added 2009/04/16 12:0 a.m.11 views

Apache Geronimo 2.1.x - consoleportal URI Cross-Site Scripting

Apache Geronimo 2.1.x - consoleportal URI Cross-Site Scripting source: https://www.securityfocus.com/bid/34562/info Apache Geronimo Application Server is prone to multiple remote vulnerabilities: - Multiple directory-traversal vulnerabilities - A cross-site scripting vulnerability - Multiple...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2009/04/16 12:0 a.m.24 views

Apache Geronimo 2.1.3 - Multiple Directory Traversal Vulnerabilities

Apache Geronimo 2.1.3 - Multiple Directory Traversal Vulnerabilities Digital Security Research Group DSecRG Advisory DSECRG-09-018 Application: Apache Geronimo Application Server Versions Affected: 2.1 - 2.1.3 Vendor URL: http://geronimo.apache.org/ Bug: Directory Traversal File Upload Exploits:...

0.8AI score
Exploits0
exploitpack
exploitpack
added 2009/04/16 12:0 a.m.12 views

Apache Geronimo 2.1.x - Cross-Site Request Forgery (Multiple Admin Function)

Apache Geronimo 2.1.x - Cross-Site Request Forgery Multiple Admin Function source: https://www.securityfocus.com/bid/34562/info Apache Geronimo Application Server is prone to multiple remote vulnerabilities: - Multiple directory-traversal vulnerabilities - A cross-site scripting vulnerability -...

0.9AI score
Exploits0
0day.today
0day.today
added 2009/04/16 12:0 a.m.32 views

Apache Geronimo <= 2.1.3 Multiple Directory Traversal Vulnerabilities

Exploit for multiple platform in category remote exploits ===================================================================== Apache Geronimo = 2.1.3 Multiple Directory Traversal Vulnerabilities ===================================================================== Digital Security Research Grou...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/04/16 12:0 a.m.48 views

Apache Geronimo Cross Site Request Forgery

Original Advisory: http://dsecrg.com/pages/vul/show.php?id=120 Digital Security Research Group DSecRG Advisory DSECRG-09-020 Application: Apache Geronimo Application Server Versions Affected: 2.1 - 2.1.3 Vendor URL: http://geronimo.apache.org/ Bug: Multiple XSRF Vulnerabilities Exploits: YES...

6.8CVSS0.7AI score0.11059EPSS
Exploits2
Rows per page
Query Builder