Lucene search
+L

189 matches found

CVE
CVE
added 2018/06/26 5:0 p.m.229 views

CVE-2017-7658

In CVE-2017-7658, Eclipse Jetty had a flaw in how it handles HTTP requests when multiple Content-Length headers are present or when a Content-Length header accompanies a chunked encoding header. This could allow a forged or pipelined request to bypass intermediary authorization if the shorter len...

9.8CVSS9.2AI score0.20985EPSS
Exploits0References17Affected Software1
Veracode
Veracode
added 2018/01/18 4:44 a.m.10 views

Information Disclosure

hadoop-common is vulnerable to information disclosure. The Jetty server version is leaked as a header in HTTP responses. Using this, attackers have a better idea of potential exploits which might work against the server...

6.2AI score
Exploits0
exploitpack
exploitpack
added 2016/02/17 12:0 a.m.57 views

Inductive Automation Ignition 7.8.1 - Remote Leakage Of Shared Buffers

Inductive Automation Ignition 7.8.1 - Remote Leakage Of Shared Buffers Inductive Automation Ignition 7.8.1 Remote Leakage Of Shared Buffers Vendor: Inductive Automation Product web page: http://www.inductiveautomation.com Affected version: 7.8.1 b2016012216 and 7.8.0 b2015101414 Platform: Java...

5CVSS0.2AI score0.74881EPSS
Exploits16
Packet Storm
Packet Storm
added 2016/02/17 12:0 a.m.83 views

Inductive Automation Ignition 7.8.1 Remote Leakage Of Shared Buffers

Inductive Automation Ignition 7.8.1 Remote Leakage Of Shared Buffers Vendor: Inductive Automation Product web page: http://www.inductiveautomation.com Affected version: 7.8.1 b2016012216 and 7.8.0 b2015101414 Platform: Java Summary: Ignition is a powerful industrial application platform with full...

3.9CVSS0.2AI score0.74881EPSS
Exploits16
Exploit DB
Exploit DB
added 2016/02/17 12:0 a.m.75 views

Inductive Automation Ignition 7.8.1 - Remote Leakage Of Shared Buffers

Inductive Automation Ignition 7.8.1 Remote Leakage Of Shared Buffers Vendor: Inductive Automation Product web page: http://www.inductiveautomation.com Affected version: 7.8.1 b2016012216 and 7.8.0 b2015101414 Platform: Java Summary: Ignition is a powerful industrial application platform with full...

7.5CVSS7.6AI score0.74881EPSS
Exploits16
myhack58
myhack58
added 2014/07/24 12:0 a.m.11 views

The Java Debugger exploits and fixes-vulnerability warning-the black bar safety net

0x0 Foreword Recently found an interesting vulnerability-JAVA open the Debugger mode can execute arbitrary system commands. Need certain Use Conditions, you have to be open to debug the process of setting up a breakpoint, and then use this breakpoint to execute the command of the operation. 0x1...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2003/06/02 12:0 a.m.26 views

JBOSS 3.2.1: JSP source code disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, jboss 3.2.1 with jetty seems to be vulnerable to jsp source code disclosure. Trying to access the ServerInfo.jsp with an suffixed "00" shows the source code of this JSP. Seems to be a forgotten debug feature :-...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2002/09/28 12:0 a.m.33 views

Jetty 4.1 Servlet Engine - Cross-Site Scripting

source: https://www.securityfocus.com/bid/5821/info Jetty is a freely available, open source Java Web Server and Servlet Container. It is available for Linux, Unix, and Microsoft Windows platforms. It has been reported that Jetty does not properly sanitize requests. This could result in a user...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/12/01 12:0 a.m.75 views

Other Web Servers vulnerable to %3f.jsp directory listing

I tried posting to Bugtraq...but perhaps this is the more appropriate mailing list. Anyways here are some Response headers to servers that are vulnerable to the 3f.jsp directory listing exploit -Slow2Show- University of Florida HTTP/1.0 200 OK Date: Fri, 30 Nov 2001 03:43:27 GMT Server:...

1.5AI score
Exploits0
Rows per page
Query Builder