CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

vulnersOsv•added 2026/05/20 3:35 p.m.•6 views

org.glassfish.main.admingui:admingui (>=7.0.0 <=9.0.0-M1), org.glassfish.main.admingui:console-cluster-plugin (>=7.0.0 <=9.0.0-M1) +19 more potentially affected by CVE-2026-2586 via org.glassfish.jsftemplating:jsftemplating (>=4.0.0 <=4.1.0)

org.glassfish.jsftemplating:jsftemplating MAVEN version =4.0.0, =7.0.0, =7.0.0, =7.0.16, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =9.0.0-M1 and more Source cves: CVE-2026-2586 Source advisory: SNYK:JAVA-ORGGLASSFISHJSFTEMPLATING-167906...

9.1CVSS5.4AI score0.00819EPSS

Exploits1

VulnCheck KEV•added 2026/02/11 12:0 a.m.•13 views

VulnCheck KEV: CVE-2020-9314

PRODUCT NOT SUPPORTED WHEN ASSIGNED Oracle iPlanet Web Server 7.0.x allows image injection in the Administration console via the productNameSrc parameter to an admingui URI. This issue exists because of an incomplete fix for CVE-2012-0516. NOTE: a related support policy can be found in the...

6.8CVSS5.7AI score0.02912EPSS

In wildExploits0References2

vulnersOsv•added 2025/07/16 12:30 p.m.•6 views

org.glassfish.main.admingui:console-cluster-plugin (>=3.1.2 <=6.2.5), org.glassfish.main.admingui:console-common-full-plugin (>=3.1.2 <=6.2.5) +14 more potentially affected by CVE-2024-9408 via org.glassfish.main.admingui:console-common (>=3.1.2 <=6.2.5)

org.glassfish.main.admingui:console-common MAVEN version =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =4.0, =3.1.2, =4.0, =3.1.2, =4.0, =4.0, =4.1, =4.1, =6.2.5 and more Source cves: CVE-2024-9408 Source advisory: OSV:GHSA-F7H5-C625-3795...

9.8CVSS5.8AI score0.0029EPSS

Exploits0

vulnersOsv•added 2025/07/16 12:30 p.m.•5 views

org.glassfish.main.admingui:console-cluster-plugin (>=3.1.2 <=9.0.0-M2), org.glassfish.main.admingui:console-commandrecorder-plugin (>=7.0.16 <=9.0.0-M2) +16 more potentially affected by CVE-2024-10031 via org.glassfish.main.admingui:console-common (>=3.1.2 <=9.0.0-M2)

org.glassfish.main.admingui:console-common MAVEN version =3.1.2, =3.1.2, =7.0.16, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =3.1.2, =4.0, =3.1.2, =4.0, =3.1.2, =4.0, =4.0, =6.2.5, =9.0.0-M2 and more Source cves: CVE-2024-10031 Source advisory:...

5.8CVSS5.8AI score0.00161EPSS

Exploits0

vulnersOsv•added 2025/07/16 12:30 p.m.•5 views

org.glassfish.main.admingui:console-cluster-plugin (>=3.1.2 <=9.0.0-M2), org.glassfish.main.admingui:console-commandrecorder-plugin (>=7.0.16 <=9.0.0-M2) +16 more potentially affected by CVE-2024-9342 via org.glassfish.main.admingui:console-common (>=3.1.2 <=9.0.0-M2)

9.8CVSS5.8AI score0.00403EPSS

Exploits0

CVE•added 2020/05/10 10:23 p.m.•115 views

CVE-2020-9315

Oracle iPlanet Web Server 7.0.x is affected by two CVEs. CVE-2020-9315: authentication bypass via incorrect access control on admingui/version URIs, enabling unauthenticated read access to encryption keys. CVE-2020-9314: image injection via productNameSrc in the admingui, stemming from an incompl...

7.5CVSS7.2AI score0.81814EPSS

Exploits0References4Affected Software1

Veracode•added 2017/03/24 11:29 a.m.•34 views

Cross-site Scripting (XSS)

Glassfish admingui is vulnerable to cross-site scripting XSS attacks. The library does not escape user input in the configNameSection, making it vulnerable to XSS attacks...

5.8CVSS5.5AI score0.01212EPSS

Exploits0References6Affected Software1

Veracode•added 2017/03/24 6:49 a.m.•13 views

Information Disclosure

Glassfish admingui is vulnerable to information disclosure attacks. These attacks are possible because Windows usernames and passwords are logged in plaintext in server.log...

6.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by