CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2026/01/09 11:41 a.m.•13 views

CVE-2001-1544

Directory traversal vulnerability in Macromedia JRun Web Server JWS 2.3.3, 3.0 and 3.1 allows remote attackers to read arbitrary files via a .. dot dot in the HTTP GET request...

5CVSS7AI score0.00376EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2005-1558

Malware in sbrugna...

4.3CVSS6.4AI score0.00203EPSS

Exploits0References4

Cvelist•added 2005/07/14 4:0 a.m.•19 views

CVE-2001-1544

Directory traversal vulnerability in Macromedia JRun Web Server JWS 2.3.3, 3.0 and 3.1 allows remote attackers to read arbitrary files via a .. dot dot in the HTTP GET request...

6.6AI score0.00376EPSS

Exploits0References3

Cvelist•added 2005/07/14 4:0 a.m.•16 views

CVE-2001-1511

JRun 3.0 and 3.1 running on JRun Web Server JWS and IIS allows remote attackers to read arbitrary JavaServer Pages JSP source code via a request URL containing the source filename ending in 1 "jsp%00" or 2 "js%2570"...

6.8AI score0.0059EPSS

Exploits1References2

Cvelist•added 2005/05/14 4:0 a.m.•11 views

CVE-2005-1555

Cross-site scripting XSS vulnerability in the JRun Web Server in ColdFusion MX 7.0 allows remote attackers to inject arbitrary script or HTML via the URL, which is not properly quoted in the resulting default 404 error page...

5.7AI score0.00203EPSS

Exploits0References3

CVE•added 2005/05/14 4:0 a.m.•46 views

CVE-2005-1555

CVE-2005-1555 affects the JRun Web Server component of ColdFusion MX 7.0. The vulnerability is a cross-site scripting (XSS) flaw where an attacker can inject arbitrary script or HTML through the request URL because the URL is not properly quoted in the server’s default 404 error page. This is a c...

4.3CVSS6AI score0.00203EPSS

Exploits0References3Affected Software1

Tenable Nessus•added 2005/05/11 12:0 a.m.•30 views

ColdFusion Error Page XSS

Binary data 2893.prm...

7.3AI score

Exploits0References1

NVD•added 2005/05/10 4:0 a.m.•9 views

CVE-2005-1555

4.3CVSS5.7AI score0.00203EPSS

Exploits0References3

Cvelist•added 2004/11/19 5:0 a.m.•21 views

CVE-2004-0646

Buffer overflow in the WriteToLog function for JRun 3.0 through 4.0 web server connectors, such as 1 modjrun and 2 modjrun20 for Apache, with verbose logging enabled, allows remote attackers to execute arbitrary code via a long HTTP header Content-Type field or other fields...

7.8AI score0.70947EPSS

Exploits4References7

Tenable Nessus•added 2002/06/05 12:0 a.m.•69 views

JRun Web Server (JWS) GET Request Traversal Arbitrary File Access

This host is running the Allaire JRun web server. Versions 2.3.3, 3.0, and 3.1 are vulnerable to a directory traversal attack. This allows a potential intruder to view the contents of any file on the system. %NASLMINLEVEL 70300 This script was written by H D Moore Script audit and contributions...

5CVSS5.5AI score0.00376EPSS

Exploits0References1

NVD•added 2001/12/31 5:0 a.m.•16 views

CVE-2001-1511

5CVSS6.8AI score0.0059EPSS

Exploits1References2

NVD•added 2001/12/31 5:0 a.m.•13 views

CVE-2001-1510

Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server JWS, and possibly other web servers allows remote attackers to read arbitrary files and directories by appending 1 "%3f.jsp", 2 "?.jsp" or 3 "?" to the requested URL...

5CVSS6.8AI score0.03731EPSS

Exploits1References6

NVD•added 2001/12/31 5:0 a.m.•10 views

CVE-2001-1544

Directory traversal vulnerability in Macromedia JRun Web Server JWS 2.3.3, 3.0 and 3.1 allows remote attackers to read arbitrary files via a .. dot dot in the HTTP GET request...

5CVSS6.6AI score0.00376EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by