CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Tenable Nessus•added 2022/08/08 12:0 a.m.•16 views

Expression Language Injection

Expression Language EL has been defined as part of the Java Server Pages Standard Tag Library JSTL in order to offer developers a simple way to output data from an object model. Starting from the JSP 2.0 specification, Expression Language has been made available within JSP pages, but it is also...

8.1AI score

Exploits0References2

RedhatCVE•added 2019/10/04 9:11 p.m.•26 views

CVE-2007-5731

Absolute path traversal vulnerability in Apache Jakarta Slide 2.1 and earlier allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag, a related issue to CVE-2007-5461...

3.5CVSS6.6AI score0.13005EPSS

Exploits2References3

Tenable Nessus•added 2014/04/29 12:0 a.m.•7 views

Apache Jakarta HTTP Client Detection

Binary data 8234.prm...

7.3AI score

Exploits0References1

seebug.org•added 2009/12/25 12:0 a.m.•11 views

apache Jakarta 1.4.2 跨站脚本漏洞

No description provided by source...

7.1AI score

Exploits0

OpenVAS•added 2009/10/10 12:0 a.m.•39 views

SLES9: Security update for Tomcat

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: apache-jakarta-tomcat-connectors apache2-jakarta-tomcat-connectors jakarta-tomcat jakarta-tomcat-doc jakarta-tomcat-examples For more information, please vis...

4.3CVSS7.6AI score0.92704EPSS

Exploits22References1

NVD•added 2007/10/30 11:46 p.m.•26 views

CVE-2007-5731

3.5CVSS5.6AI score0.13005EPSS

Exploits0References5

Prion•added 2007/10/30 11:46 p.m.•25 views

Path traversal

3.5CVSS4.1AI score0.13005EPSS

Exploits2References5Affected Software1

CVE•added 2007/10/30 11:0 p.m.•65 views

CVE-2007-5731

CVE-2007-5731: Absolute path traversal in Apache Jakarta Slide (2.1 and earlier) via WebDAV write with a SYSTEM-tag entity allows remote authenticated users to read arbitrary files. Base access requires authentication; impact is partial confidentiality breach. The provided documents do not specif...

3.5CVSS7.3AI score0.13005EPSS

Exploits0References5Affected Software1

Cvelist•added 2007/10/30 11:0 p.m.•27 views

CVE-2007-5731

5.8AI score0.13005EPSS

Exploits0References5

FreeBSD•added 2005/01/03 12:0 a.m.•14 views

tomcat -- Tomcat Manager cross-site scripting

Oliver Karow discovered cross-site scripting issues in the Apache Jakarta Tomcat manager. The developers refer to the issues as minor...

3.4AI score

Exploits0References2

Tenable Nessus•added 2004/12/06 12:0 a.m.•24 views

Apache Jakarta Lucene results.jsp XSS

The remote host is using Apache Jakarta Lucene, a full-featured text search engine library implemented in Java. There is a cross-site scripting vulnerability in the script 'results.jsp' that may allow an attacker to steal the cookies of legitimate users on the remote host. %NASLMINLEVEL 70300 Thi...

5.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by