Lucene search
K

7 matches found

vulnersOsv
vulnersOsv
•added 2022/05/01 6:45 p.m.•4 views

ch.hortis.sonar:sonar-application (>=1.0 <=1.0.2), de.akquinet.jbosscc.latex:maven-latex-plugin (=1.2) +64 more potentially affected by CVE-2007-6672 via org.mortbay.jetty:jetty (>=6.1.5 <=6.1.6rc1)

org.mortbay.jetty:jetty MAVEN version =6.1.5, =1.0, =1.1, =2.0, =1.0-m1, =3.2, =3.2.2 and more Source cves: CVE-2007-6672 Source advisory: OSV:GHSA-4JJW-XRR6-9V3P...

5CVSS7.1AI score0.03832EPSS
Exploits0
RedhatCVE
RedhatCVE
•added 2019/10/04 9:29 p.m.•21 views

CVE-2007-6672

Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass protection mechanisms and read the source of files via multiple '/' slash characters in the URI...

5CVSS6.9AI score0.03832EPSS
Exploits0References3
OpenVAS
OpenVAS
•added 2008/09/04 12:0 a.m.•19 views

FreeBSD Ports: jetty

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5CVSS8AI score0.03832EPSS
Exploits0References3
OpenVAS
OpenVAS
•added 2008/09/04 12:0 a.m.•31 views

FreeBSD Ports: jetty

The remote host is missing an update to the system as announced in the referenced advisory. VID 0832ee18-cf77-11dc-8c6a-00304881ac9a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

5CVSS7.9AI score0.03832EPSS
Exploits0
CVE
CVE
•added 2008/01/08 11:0 a.m.•70 views

CVE-2007-6672

Jetty 6.1.5 and 6.1.6 are affected by CVE-2007-6672, an information-disclosure vulnerability where remote attackers can read restricted files by crafting URIs containing multiple forward slashes (//). The root cause is improper processing of URLs with multiple ‘/’ characters, allowing access to r...

5CVSS7.3AI score0.03832EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
•added 2008/01/07 12:0 a.m.•36 views

Mort Bay Jetty URL Multiple Slash Character Information Disclosure

The remote instance of Mort Bay Jetty allows an attacker to view static content in WEB-INF and behind security constraints because of the approach it uses to compact URLs like '/foo///bar'. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...

5CVSS7.3AI score0.03832EPSS
Exploits0References2
CERT
CERT
•added 2008/01/03 12:0 a.m.•27 views

Jetty fails to properly process URLs that contain double / characters

Overview The Jetty web server contains a vulnerability that may allow an attacker to access private files or directories. Description Jetty is a web server that is implemented in Java. Jetty contains a vulnerability in the way it processes URLs with multiple "/" slash characters. See the Jetty...

5CVSS7.8AI score0.03832EPSS
Exploits0References5
Rows per page
Query Builder