Lucene search
K

110 matches found

OpenVAS
OpenVAS
added 2009/07/22 12:0 a.m.27 views

Sun Java System Web Server '.jsp' Information Disclosure Vulnerability (Windows)

This host is running Sun Java Web Server which is prone to Information Disclosure Vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservinfodiscvuln.nasl 6519 2017-07-04 14:08:14Z cfischer $ Sun Java System Web Server '.jsp' Information Disclosure Vulnerability Windows Authors: Antu...

5CVSS0.02521EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/07/22 12:0 a.m.26 views

Sun Java System Web Server '.jsp' Information Disclosure Vulnerability - Windows

Sun Java Web Server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.2AI score0.02521EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2009/06/19 12:0 a.m.23 views

Sun Java System Web Proxy Server Vulnerabilities (Windows)

This host has Sun Java Web Server running on Windows, which is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservxssvulnwin.nasl 5369 2017-02-20 14:48:07Z cfi $ Sun Java System Web Server XSS Vulnerability Windows Authors: Sharath S Copyright: Copyrig...

4.3CVSS0.2AI score0.02235EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/06/19 12:0 a.m.25 views

Sun Java System Web Proxy Server Vulnerabilities (Windows)

This host has Sun Java Web Server running on Linux, which is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavasyswebservxssvulnlin.nasl 5158 2017-02-01 14:53:04Z mime $ Sun Java System Web Server XSS Vulnerability Linux Authors: Sharath S Copyright: Copyright ...

4.3CVSS0.2AI score0.02235EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/06/19 12:0 a.m.17 views

Sun/Oracle Web Server Detection (HTTP)

HTTP based detection of various Sun/Oracle Web Server products. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free softwar...

0.2AI score
Exploits0
Prion
Prion
added 2009/06/05 4:0 p.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote attackers to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error...

4.3CVSS6AI score0.02235EPSS
Exploits0References9Affected Software2
NVD
NVD
added 2009/06/05 4:0 p.m.39 views

CVE-2009-1934

Cross-site scripting XSS vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote attackers to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error...

4.3CVSS5.5AI score0.02235EPSS
Exploits0References9
CVE
CVE
added 2009/06/05 3:25 p.m.74 views

CVE-2009-1934

Sun Java System Web Server 6.1 (Reverse Proxy Plug-in) is vulnerable to an XSS issue (CVE-2009-1934) in scenarios that trigger a 502 Gateway error. The vulnerability affects the Reverse Proxy Plug-in before SP11, allowing remote attackers to inject arbitrary script via the query string. The avail...

4.3CVSS5.5AI score0.02235EPSS
Exploits0References9Affected Software2
Cvelist
Cvelist
added 2009/06/05 3:25 p.m.39 views

CVE-2009-1934

Cross-site scripting XSS vulnerability in the Reverse Proxy Plug-in in Sun Java System Web Server 6.1 before SP11 allows remote attackers to inject arbitrary web script or HTML via the query string in situations that result in a 502 Gateway error...

5.5AI score0.02235EPSS
Exploits0References9
CVE
CVE
added 2008/06/03 2:0 p.m.56 views

CVE-2008-2518

CVE-2008-2518 is an XSS vulnerability in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 3, affecting the advanced search (webapps/search/advanced.jsp). The underlying issue is an HTML/script injection via unspecified vectors (likely related to the next parameter). Exploitation de...

4.3CVSS5.5AI score0.01875EPSS
Exploits0References6Affected Software1
seebug.org
seebug.org
added 2008/05/29 12:0 a.m.14 views

Sun Java系统Web服务器高级搜素机制跨站脚本漏洞

BUGTRAQ ID: 29355 Sun Java System Web Server是高性能的WEB服务器。 Sun Java系统Web服务器的高级搜素机制没有正确地过滤某些用户输入,远程非特权可以通过提交恶意搜索请求执行跨站脚本攻击,导致用户在客户端的web浏览器中执行任意JavaScript命令,这可能允许远程用户窃取cookie信息、劫持会话或导致损失数据保密性。 Sun Java System Web Server 7.0 Update 2 Sun Java System Web Server 7.0 Update 1 Sun Java System Web Server 7...

6.5AI score
Exploits0
NVD
NVD
added 2008/05/13 8:20 p.m.27 views

CVE-2008-2166

Cross-site scripting XSS vulnerability in the search module in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 2 allows remote attackers to inject arbitrary web script or HTML via unknown parameters in index.jsp...

4.3CVSS5.5AI score0.01875EPSS
Exploits0References6
CVE
CVE
added 2007/12/28 9:0 p.m.51 views

CVE-2007-6572

CVE-2007-6572 is an XSS vulnerability in Sun Java System Web Server 6.1 before SP8 and 7.0 before Update 1. It allows remote attackers to inject arbitrary web script or HTML via unspecified vectors (BugID 6566204). Affected components: Sun Java System Web Server 6.1 (pre-SP8) and 7.0 (pre-Update ...

4.3CVSS5.8AI score0.01659EPSS
Exploits0References5Affected Software2
seebug.org
seebug.org
added 2007/12/25 12:0 a.m.14 views

Sun Java Web Proxy Server和Sun Java Web Server跨站脚本漏洞

BUGTRAQ ID: 26978 CNCAN ID:CNCAN-2007122401 Sun Java Web Proxy Server和Sun Java Web Server是两款基于JAVA的应用服务程序。 Sun Java Web Proxy Server和Sun Java Web Server存在输入验证问题,远程攻击者可以利用漏洞进行跨站脚本攻击,可获得敏感信息或任意脚本代码执行。 目前没有详细漏洞细节提供。 Sun Java Web Proxy Server 4.0.5 Sun Java Web Proxy Server 4.0.4 Sun Java Web Proxy...

6.9AI score
Exploits0
Prion
Prion
added 2007/08/07 10:17 a.m.24 views

Crlf injection

CRLF injection vulnerability in the redirect feature in Sun Java System Web Server 6.1 and 7.0 before 20070802, when the redirect Server Application Function SAF uses the url-prefix parameter and escape is disabled, or an Error directive uses the url-prefix parameter in obj.conf, allows remote...

7.5CVSS7AI score0.02465EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2007/08/07 10:0 a.m.31 views

CVE-2007-4164

CRLF injection vulnerability in the redirect feature in Sun Java System Web Server 6.1 and 7.0 before 20070802, when the redirect Server Application Function SAF uses the url-prefix parameter and escape is disabled, or an Error directive uses the url-prefix parameter in obj.conf, allows remote...

6.6AI score0.02465EPSS
Exploits0References6
CVE
CVE
added 2007/08/07 10:0 a.m.57 views

CVE-2007-4164

CVE-2007-4164 affects Sun Java System Web Server 6.1 and 7.0; CRLF injection in the redirect SAF when url-prefix is used (escape disabled) or Error directive uses url-prefix in obj.conf, enabling remote HTTP header injection/response splitting. Affected products require patches: Web Server 6.1 pa...

7.5CVSS6.6AI score0.02465EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2007/03/16 9:19 p.m.21 views

Code injection

Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application...

7.5CVSS6.8AI score0.02617EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2007/03/16 9:19 p.m.16 views

CVE-2007-1488

Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application...

7.5CVSS6.6AI score0.02617EPSS
Exploits0References7
CERT
CERT
added 2007/02/08 12:0 a.m.31 views

Sun Network Security Services (NSS) vulnerable to DoS due to an unspecified vulnerability

Overview The NSS libraries used in the Sun One Application Server and the Sun Java System web server contain an unspecified vulnerability that may allow an attacker to create a denial-of-service condition. Description The Sun One Application Server provides a Java 2 Platform for delivering Java...

4CVSS6.7AI score0.02044EPSS
Exploits0References9
Rows per page
Query Builder