Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2002-1434

Malware in sbrugna...

5CVSS6.4AI score0.05784EPSS
Exploits1References5
CNVD
CNVDadded 2015/09/17 12:0 a.m.1 views

Multiple Cross-Site Request Forgery Vulnerabilities in Ignite Realtime Openfire

Ignite Realtime Openfire formerly known as Wildfire is the IgniteRealtime community of a Java development and based on XMPP formerly known as Jabber, Instant Messaging Protocol cross-platform open-source real-time collaboration RTC server , it can build a high-efficiency instant messaging servers...

6.8CVSS7AI score0.16084EPSS
Exploits2References1
Tenable Nessus
Tenable Nessusadded 2009/10/20 12:0 a.m.17 views

IBM Rational RequisitePro ReqWebHelp Multiple XSS

IBM Rational RequisitePro is installed on the remote host. The installed version contains two JSP scripts that are affected by cross-site scripting vulnerabilities. Specifically, it fails to sanitize input to the 'searchWord', 'maxHits', 'scopedSearch', and 'scope' parameters of 'searchView.jsp'...

4.3CVSS5.7AI score0.01464EPSS
Exploits1References2
Cvelist
Cvelistadded 2007/01/29 4:0 p.m.15 views

CVE-2005-4825

Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service disk consumption, or make unauthorized files accessible, by uploading files through requests to certain JSP scripts, a related issue to CVE-2005-4332...

7AI score0.00128EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2006/03/27 12:0 a.m.32 views

Orion Application Server Crafted Filename Extension JSP Script Source Disclosure

The remote host is running Orion Application Server, an application server running on a Java2 platform. According to its banner, the version of Orion installed on the remote Windows host fails to properly validate filename extensions in URLs. A remote attacker may be able to leverage this issue t...

5CVSS5.5AI score0.0126EPSS
Exploits0References2
NVD
NVDadded 2005/12/31 5:0 a.m.11 views

CVE-2005-4825

Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service disk consumption, or make unauthorized files accessible, by uploading files through requests to certain JSP scripts, a related issue to CVE-2005-4332...

5.7CVSS7AI score0.00128EPSS
Exploits0References3
OpenVAS
OpenVASadded 2005/11/03 12:0 a.m.97 views

BEA WebLogic Scripts Server scripts Source Disclosure

BEA WebLogic may be tricked into revealing the source code of JSP scripts by using simple URL encoding of characters in the filename extension. e.g.: default.js%70 =default.jsp won SPDX-FileCopyrightText: 2001 INTRANODE Some text descriptions might be excerpted from a referenced sources, and are...

7.5AI score
Exploits0References2
Rows per page
Query Builder