Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

VulnCheck KEV
VulnCheck KEVadded 2026/02/11 12:0 a.m.4 views

VulnCheck KEV: CVE-2020-9314

PRODUCT NOT SUPPORTED WHEN ASSIGNED Oracle iPlanet Web Server 7.0.x allows image injection in the Administration console via the productNameSrc parameter to an admingui URI. This issue exists because of an incomplete fix for CVE-2012-0516. NOTE: a related support policy can be found in the...

6.8CVSS5.7AI score0.12006EPSS
In wildExploits0References2
vulnersOsv
vulnersOsvadded 2025/07/16 12:30 p.m.2 views

org.glassfish.main.admingui:console-cluster-plugin (>=3.1.2 <=6.2.5), org.glassfish.main.admingui:console-common-full-plugin (>=3.1.2 <=6.2.5) +14 more potentially affected by CVE-2024-9408 via org.glassfish.main.admingui:console-common (>=3.1.2 <=6.2.5)

org.glassfish.main.admingui:console-common MAVEN version =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =4.0, =3.1.2, =4.0, =3.1.2, =4.0, =4.0, =4.1, =4.1, =6.2.5 and more Source cves: CVE-2024-9408 Source advisory: OSV:GHSA-F7H5-C625-3795...

9.8CVSS5.8AI score0.00298EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2025/07/16 12:30 p.m.4 views

org.glassfish.main.admingui:console-cluster-plugin (>=3.1.2 <=9.0.0-M2), org.glassfish.main.admingui:console-commandrecorder-plugin (>=7.0.16 <=9.0.0-M2) +16 more potentially affected by CVE-2024-9342 via org.glassfish.main.admingui:console-common (>=3.1.2 <=9.0.0-M2)

org.glassfish.main.admingui:console-common MAVEN version =3.1.2, =3.1.2, =7.0.16, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =4.0, =3.1.2, =4.0, =3.1.2, =4.0, =4.0, =6.2.5, =9.0.0-M2 and more Source cves: CVE-2024-9342 Source advisory:...

9.8CVSS5.8AI score0.00396EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2025/07/16 12:30 p.m.1 views

org.glassfish.main.admingui:console-cluster-plugin (>=3.1.2 <=9.0.0-M2), org.glassfish.main.admingui:console-commandrecorder-plugin (>=7.0.16 <=9.0.0-M2) +16 more potentially affected by CVE-2024-10031 via org.glassfish.main.admingui:console-common (>=3.1.2 <=9.0.0-M2)

org.glassfish.main.admingui:console-common MAVEN version =3.1.2, =3.1.2, =7.0.16, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =4.0, =3.1.2, =4.0, =3.1.2, =4.0, =4.0, =6.2.5, =9.0.0-M2 and more Source cves: CVE-2024-10031 Source advisory:...

5.8CVSS5.8AI score0.00106EPSS
Exploits0
CVE
CVEadded 2020/05/10 10:23 p.m.106 views

CVE-2020-9315

Oracle iPlanet Web Server 7.0.x is affected by two CVEs. CVE-2020-9315: authentication bypass via incorrect access control on admingui/version URIs, enabling unauthenticated read access to encryption keys. CVE-2020-9314: image injection via productNameSrc in the admingui, stemming from an incompl...

7.5CVSS7.2AI score0.8793EPSS
Exploits0References4Affected Software1
Veracode
Veracodeadded 2017/03/24 11:29 a.m.33 views

Cross-site Scripting (XSS)

Glassfish admingui is vulnerable to cross-site scripting XSS attacks. The library does not escape user input in the configNameSection, making it vulnerable to XSS attacks...

5.8CVSS5.5AI score0.00395EPSS
Exploits0References6Affected Software1
Veracode
Veracodeadded 2017/03/24 6:49 a.m.12 views

Information Disclosure

Glassfish admingui is vulnerable to information disclosure attacks. These attacks are possible because Windows usernames and passwords are logged in plaintext in server.log...

6.2AI score
Exploits0
Rows per page
Query Builder