Lucene search
K
SecurityvulnsMost viewed

47153 matches found

securityvulns
securityvulns
added 2013/12/09 12:0 a.m.123 views

Intersystems Cache Remote Code Execution (via Default 'Minimal Security' Install)

------------------- 1 Overview Title: Intersystems Cache Remote Code Execution via Default 'Minimal Security' Install Product: Intersystems Cache Product URL: http://www.intersystems.com/cache/index.html Vendor: Intersystems Affected Versions: Tested on Cache for Windows x86-64 & i386 2009. thru...

Exploits0
securityvulns
securityvulns
added 2013/10/03 12:0 a.m.123 views

[ MDVSA-2013:235 ] mediawiki

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:235 http://www.mandriva.com/en/support/security/ Package : mediawiki Date : September 16, 2013 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in...

5CVSS6.7AI score0.02084EPSS
Exploits2
securityvulns
securityvulns
added 2013/05/27 12:0 a.m.123 views

[USN-1833-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-1833-1 May 24, 2013 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

7.2CVSS0.3AI score0.00985EPSS
Exploits2
securityvulns
securityvulns
added 2013/02/11 12:0 a.m.123 views

ESA-2013-002: RSA Archer® GRC Multiple Vulnerabilities

ESA-2013-002.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-002: RSA Archer® GRC Multiple Vulnerabilities EMC Identifier: ESA-2013-002 CVE Identifier: CVE-2012-2293, CVE-2012-2292, CVE-2012-1064, CVE-2012-2294 Severity Rating: See below for scores for individual issues Affected...

7.5CVSS6.4AI score0.0214EPSS
Exploits0
securityvulns
securityvulns
added 2012/06/03 12:0 a.m.123 views

[SECURITY] [DSA 2480-1] request-tracker3.8 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2480-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 24, 2012 http://www.debian.org/security/faq -...

6.8CVSS1.5AI score0.03101EPSS
Exploits0
securityvulns
securityvulns
added 2012/05/14 12:0 a.m.123 views

[ MDVSA-2012:071 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:071 http://www.mandriva.com/security/ Package : php Date : May 10, 2012 Affected: Enterprise Server 5.0 Problem Description: This is a bugfix and security advisory that upgrades php to the latest 5.3.13...

10CVSS8.8AI score0.99998EPSS
Exploits83
securityvulns
securityvulns
added 2012/01/16 12:0 a.m.124 views

ME020567: MailEnable webmail cross-site scripting vulnerability CVE-2012-0389

ME020567: MailEnable webmail cross-site scripting vulnerability CWE-79 References: CVE-2012-0389 Discovered by: Sajjad Pourali, Narendra Shinde and Shahab NamaziKhah Vendor advisory: http://www.mailenable.com/kb/Content/Article.asp?ID=me020567 Vendor contact: 2012-01-04 09:49:36 UTC Vendor...

4.3CVSS6.2AI score0.0842EPSS
Exploits5
securityvulns
securityvulns
added 2011/09/26 12:0 a.m.123 views

Re: NGS00099 Patch Notification: Vulnerable SUID script in (nomachine) NX Server for Linux

Research@NGSSecure [email protected] wrote: Vulnerable SUID script in nomachine NX Server for Linux 3.5.0-4 Advanced and Enterprise across redhat and debian hosts 21 September 2011 NGS Secure has discovered a High risk vulnerability in nomachine NX Server for Linux 3.5.0-4 Advanced and...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2011/08/27 12:0 a.m.123 views

Spherica Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Spherica AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.spherica.it/ Persian Gulf 4 Ever! Dork : "powered by spherica" "inurl:prodotto.php?idcatalogo=" Exploite:...

4AI score
Exploits0
securityvulns
securityvulns
added 2011/08/01 12:0 a.m.123 views

[security bulletin] HPSBMU02669 SSRT100346 rev.3 - HP Data Protector Media Management Daemon (mmd), Remote Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02940981 Version: 1 HPSBMU02669 SSRT100346 rev.3 - HP Data Protector Media Management Daemon mmd, Remote Denial of Service DoS NOTICE: The information in this Security Bulletin should be acted up...

7.8CVSS0.8AI score0.04549EPSS
Exploits0
securityvulns
securityvulns
added 2010/09/27 12:0 a.m.123 views

[security bulletin] HPSBMA02583 SSRT100070 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02518794 Version: 1 HPSBMA02583 SSRT100070 rev.1 - HP System Management Homepage SMH for Linux and Windows, Remote URL Redirection NOTICE: The information in this Security Bulletin should be acte...

4.3CVSS0.09659EPSS
Exploits1
securityvulns
securityvulns
added 2010/08/09 12:0 a.m.123 views

Security vulnerabilities in HP ProCurve switches

Unauthorized access, information leak, DoS...

8.3CVSS2AI score0.01238EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2010/06/15 12:0 a.m.123 views

PR09-17: Juniper Secure Access seriers (Juniper IVE) authenticated XSS & REDIRECTION

PR09-17: Juniper Secure Access series Juniper IVE authenticated XSS & REDIRECTION http://www.procheckup.com/vulnerabilitymanager/vulnerabilities/pr09-17 Vulnerability found: 12th October 2009 Vendor informed: 12 October 2009 Severity: Medium Script injection Description: There are multiple...

5.6AI score
Exploits0
securityvulns
securityvulns
added 2010/06/07 12:0 a.m.123 views

XSRF (CSRF) in CuteSITE CMS

Vulnerability ID: HTB22395 Reference: http://www.htbridge.ch/advisory/xsrfcsrfincutesitecms.html Product: CuteSITE CMS Vendor: AMT Company Vulnerable Version: 1.5.0 and Probably Prior Versions Vendor Notification: 20 May 2010 Vulnerability Type: CSRF Cross-Site Request Forgery Status: Not Fixed,...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2010/01/23 12:0 a.m.123 views

Kayako SupportSuite Multiple Persistent Cross Site Scripting (Current Versions)

Comodo Group Vendor : Kayako Infotech Ltd. URL : http://www.kayako.com/ Version : Kayako SupportSuite = 3.60.04 We've discovered multiple persistent cross site scripting vulnerabilities in the latest version of Kayako SupportSuite 3.60.04. Because of improper input validation an attacker...

6.6AI score
Exploits0
securityvulns
securityvulns
added 2009/11/17 12:0 a.m.123 views

Home FTP Server 'MKD' Command Directory Traversal Vulnerability

Date of Discovery: 17-Nov-2009 Credits:zhangmcatmail.ustc.edu.cn Vendor: Ari Pikivirta http://downstairs.dnsalias.net/homeftpserver.html Affected: Home FTP Server 1.10.1.139 Earlier versions may also be affected Overview: Home FTP Server is an easy use FTP server Application. Directory Traversal...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2009/07/27 12:0 a.m.123 views

Vulnerabilities in XAMPP

Hello 3APA3A! I want to warn you about security vulnerabilities in XAMPP. These are Information Leakage, Cross-Site Request Forgery and SQL Injection vulnerabilities. Information Leakage: http://site/xampp/phpinfo.php During access to admin panel via Insufficient Authorization vulnerabilities it'...

2.6AI score
Exploits0
securityvulns
securityvulns
added 2009/05/25 12:0 a.m.123 views

Novell GroupWise Internet Agent Remote Buffer Overflow Vulnerabilities

VUPEN Security Research Advisory - VUPEN-SR-2009-01 // VUPEN-SR-2009-02 Advisory URL: http://www.vupen.com/english/advisories/2009/1393 May 22, 2009 I. BACKGROUND ---------------------- Novell GroupWise is a complete collaboration software solution that provides information workers with e-mail,...

10CVSS8AI score0.08435EPSS
Exploits5
securityvulns
securityvulns
added 2007/12/09 12:0 a.m.123 views

Potential SQL injection vulnerability in Apache::AuthCAS

Some weeks ago, I sent the following message to David Castro, the author of Apache::AuthCAS. As there hasn't been any reply and the guys at ja-sig.org haven't been able or willing to look into it, perhaps there is somebody here who wants to have a closer look at this? CAS is the Central...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2007/10/23 12:0 a.m.123 views

3proxy 0.5.3j released (bugfix)

3proxy http://3proxy.ru/ is multi-platform Windows, Linux, Unix multi-protocol proxy server with abilities to mange traffic flows and bandwidths, convert requests between different proxy types, authenticate, authorize, control, limit and account users access and more. 3proxy 0.5.3j version was...

5CVSS0.6AI score0.02079EPSS
Exploits1
securityvulns
securityvulns
added 2007/07/31 12:0 a.m.123 views

Phorm v3.0 Remote File Upload Vulnerability

Phorm v3.0 Remote File Upload Vulnerability ilker kandemir ilkerkandemiratmynet.com Download: ftp://ftp.holotech.net/phorm/phorm.zip TnX.: Ajann, Dumenci, H0tTurk, Str0ke Exploit: http://site/phormpath/lib/fileupload.php +===== upload your shell.php http://site/phormpath/files/phpshell.php...

1AI score
Exploits0
securityvulns
securityvulns
added 2007/06/22 12:0 a.m.123 views

[Full-disclosure] [CAID 35450, 35451, 35452, 35453]: CA Products That Embed Ingres Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: CAID 35450, 35451, 35452, 35453: CA Products That Embed Ingres Multiple Vulnerabilities CA Vuln ID CAID: 35450, 35451, 35452, 35453 CA Advisory Date: 2007-06-21 Reported By: NGSSoftware, and iDefense Impact: Attackers can potentially execute...

10CVSS7.8AI score0.10321EPSS
Exploits8
securityvulns
securityvulns
added 2007/04/11 12:0 a.m.123 views

webMethods Glue Management Console Directory Traversal

aushack.com - Vulnerability Advisory ----------------------------------------------- Release Date: 11-Apr-2007 Software: webMethods - webMethods Glue Management Console http://www.webmethods.com/ "With webMethods Glue developers can easily create SOAP interfaces for their existing Java and C/C++...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2006/11/14 12:0 a.m.123 views

Mega Mall [ multiples injection sql & full path disclosure ]

vendor site: http://products.kaonsoftwares.com/ product: mega-mall bug:injection sql & full path disclosure language: asp risk: high injection sql get: http://site.com/mega-mall/productreview.php?t=sql http://site.com/mega-mall/productreview.php?t=0&productId=sql...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2006/10/23 12:0 a.m.123 views

Active Bulletin Board v1.1 beta2 (doprofiledit.asp) Remote User Pass Change

!-- Title : Active Bulletin Board v1.1 beta2 doprofiledit.asp Remote User Pass Change Exploit Author : ajann Dork : "Forum Active Bulletin Board version 1.1 bta 2" Greetz : Ramazan'iniz,Mbarek,Olsun,Tm,Mslman,Alemi|Ge,Oldu,Biraz : Code -- html body bgcolor="000000" form method="POST"...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2006/08/21 12:0 a.m.123 views

LBlog <= "comments.asp" SQL Injection Exploit

LBlog = "comments.asp" SQL Injection Exploit - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Credit by | Chironex Fleckeri Mail | [email protected] Googledork | Powered By LBlog - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Usage :...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2006/07/24 12:0 a.m.123 views

Plesk Control Panel <= 8.0.0 XSS vulnerability

Product: Plesk control panel Version: = 8.0.0 Vendor: SWSoft Inc. URL: http://www.swsoft.com/en/products/plesk/ VULNERABILITY CLASS: XSS Product Description Plesk is comprehensive server management software developed specifically for the Hosting Service Industry with the assistance of Web hosting...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2006/07/24 12:0 a.m.123 views

SolpotCrew Advisory #3 - com_trade Remote File Inclusion (mosConfig_absolute_path)

SolpotCrew Community comtrade Remote File Inclusion mosConfigabsolutepath original advisory : http://solpotcrew.org/adv/BlueSpy-adv-comtrade.txt Bug Found By :Blue|Spy contact: [email protected] Website : http://kunamgede.biz, http://blue-spy.com Greetz: h4ntu , Fungky, Solpot, Matdhule and all cr...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2006/04/12 12:0 a.m.123 views

phpListPro <= 2.0 - Remote File Include Vulnerability

phpListPro = 2.0 - Remote File Include Vulnerability -------------------------------------------------------- Software: phpListPro Version: =2.00 Type: Remote File Include Vulnerability Date: April, 11th 2006 Vendor: SmartISoft Page: http://smartisoft.com Risc: High Credits:...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2005/03/22 12:0 a.m.123 views

[ Positive Technologies #SA] Phorum "location" HTTP Response Splitting Vulnerability

Positive Technologies SA-20050322 Phorum "location" HTTP Response Splitting Vulnerability. Release Date: 03/22/2005 Date Reported: 03/10/2005 Severity: Medium Application: Phorum Platform: PHP Vendor: http://www.phorum.org Affects versions: 5.0.14a Other versions may also be affected. I. BACKGROU...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2005/02/09 12:0 a.m.123 views

[VulnWatch] iDEFENSE Security Advisory 02.08.05: IBM AIX auditselect Local Format String Vulnerability

IBM AIX auditselect Local Format String Vulnerability iDEFENSE Security Advisory 02.08.05 www.idefense.com/application/poi/display?id=193&type=vulnerabilities February 08, 2005 I. BACKGROUND The auditselect program is a setuid root application, installed by default under multiple versions of IBM...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2004/11/11 12:0 a.m.123 views

RealVNC DoS

More than 60 concurrent TCP connections causes server to crash...

1.2AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/07/30 12:0 a.m.123 views

[UNIX] PowerPortal XSS vulnerability

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

5.6AI score
Exploits0
securityvulns
securityvulns
added 2004/03/20 12:0 a.m.123 views

[Full-Disclosure] iDEFENSE Security Advisory 03.19.04: Borland Interbase admin.ib Administrative Access Vulnerability

Borland Interbase admin.ib Administrative Access Vulnerability iDEFENSE Security Advisory 03.19.04 www.idefense.com/application/poi/display?id=80&type=vulnerabilities March 19, 2004 I. BACKGROUND Borland Interbase is a small, high performance commercial database for Linux, Solaris, and Windows...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2003/06/05 12:0 a.m.123 views

Internet Explorer Object Type Property Overflow

Internet Explorer Object Type Property Overflow Release Date: June 4, 2003 Severity: High Remote Code Execution Systems Affected: Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 5.5 Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 6.0 for Windows Server 2003 Description: T...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2003/03/22 12:0 a.m.123 views

ProtWare "HTML Guardian" has pathetic "encryption"

For $40 or $70, ProtWare's "HTML Guardian" http://www.protware.com claims to "encrypt html code and javascripts, making it impossible to reuse them." Unfortunately, "HTML Guardian" does not do anything more than to obfuscate the HTML source code. There is no encryption. In fact, the JavaScript th...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2002/06/14 12:0 a.m.123 views

Microsoft RASAPI32.DLL

NGSSoftware Insight Security Research Advisory Name: Buffer Overflow in Microsoft Rasapi32.dll Systems Affected: WinNT, Win2K, XP, Microsoft Routing And Remote Access Server "Steelhead" Severity: High Category: Buffer Overrun / Privilege Escalation Vendor URL: http://www.microsoft.com/ Author: Ma...

7.8AI score
Exploits0
securityvulns
securityvulns
added 2002/01/08 12:0 a.m.123 views

KPMG-2002003: Bea Weblogic DOS-device Denial of Service

-------------------------------------------------------------------- -=Bea Weblogic DOS-device Denial of Service=- courtesy of KMPG Denmark BUG-ID: 2002003 Released: 8th Jan 2002 -------------------------------------------------------------------- Problem: ======== A flaw in the way the Bea...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2015/10/26 12:0 a.m.122 views

Dogma India dogmaindia CMS - Auth Bypass Vulnerability

Document Title: =============== Dogma India dogmaindia CMS - Auth Bypass Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1583 Release Date: ============= 2015-08-25 Vulnerability Laboratory ID VL-ID: ==================================== 158...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2015/10/26 12:0 a.m.122 views

[ZDI-15-396] ManageEngine ServiceDesk Plus remote code execution

Hi, Yet another RCE bug in ManageEngine ServiceDesk. This was disclosed by ZDI under ID ZDI-15-396 on August 20th, and fixed in version 9103 1. Details below, full advisory can be obtained from my repo at E2. A Metasploit module that exploits this vulnerability has been submitted upstream in E3...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2015/10/25 12:0 a.m.122 views

APPLE-SA-2015-10-21-1 iOS 9.1

APPLE-SA-2015-10-21-1 iOS 9.1 iOS 9.1 is now available and addresses the following: Accelerate Framework Available for: iPhone 4s and later, iPod touch 5th generation and later, iPad 2 and later Impact: Visiting a maliciously crafted website may lead to arbitrary code execution Description: A...

10CVSS0.5AI score0.067EPSS
Exploits2
securityvulns
securityvulns
added 2015/10/11 12:0 a.m.122 views

A comprehensive study of Huawei 3G routers - XSS, CSRF, DoS, unauthenticated firmware update, RCE

Hello, Please find a text-only version below sent to security mailing-lists. The html version on analysing the vulnerabilities in Huawei 3G routers is posted here: https://pierrekim.github.io/blog/2015-10-07-Huawei-routers-vulnerable-to-multiple-threats.html === text-version of the advisory ===...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2014/12/22 12:0 a.m.122 views

ResourceSpace Multiple Cross Site Scripting, and HTML and SQL Injection Vulnerabilities

Title: ResourceSpace Multiple Cross Site Scripting, and HTML and SQL Injection Vulnerabilities Author: Petri Iivonen Contact: petri.iivonenattmbcgovuk Discovered: 11 June 2014 Updated: 11 December 2014 Published: 11 December 2014 Vendor: Montala Limited Vendor url: www.resourcespace.org Software:...

8.4AI score
Exploits0
securityvulns
securityvulns
added 2014/12/22 12:0 a.m.122 views

[ MDVSA-2014:243 ] phpmyadmin

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:243 http://www.mandriva.com/en/support/security/ Package : phpmyadmin Date : December 14, 2014 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in...

5CVSS8AI score0.11055EPSS
Exploits6
securityvulns
securityvulns
added 2014/10/16 12:0 a.m.122 views

SEC Consult SA-20140710-1 :: Multiple high risk vulnerabilities in Shopizer webshop

SEC Consult Vulnerability Lab Security Advisory 20140710-1 ======================================================================= title: Multiple high risk vulnerabilities in Shopizer webshop product: Shopizer vulnerable version: 1.1.5 and below fixed version: v2 new codebase impact: high...

8AI score
Exploits0
securityvulns
securityvulns
added 2014/03/03 12:0 a.m.122 views

[security bulletin] HPSBMU02964 rev.1 - HP Service Manager, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Remote Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access, Disclosure of Informa

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04117626 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04117626 Version: 1 HPSBMU02964 rev....

10CVSS1AI score0.85882EPSS
Exploits11
securityvulns
securityvulns
added 2014/01/09 12:0 a.m.122 views

CSRF, XSS and Redirector vulnerabilities in IBM Lotus Notes Traveler

Hello 3APA3A! These are Cross-Site Request Forgery, Cross-Site Scripting and Redirector vulnerabilities in IBM Lotus Notes Traveler. They are similar to CSRF, XSS and Redirector vulnerabilities in IBM Lotus Domino http://securityvulns.ru/docs29060.html, which I announced at 19.05.2012 and disclos...

5.8CVSS0.2AI score0.01045EPSS
Exploits1
securityvulns
securityvulns
added 2013/07/19 12:0 a.m.122 views

AFU and XSS vulnerabilities in TinyMCE Image Manager

Hello 3APA3A! These are Arbitrary File Uploading and Cross-Site Scripting vulnerabilities in TinyMCE Image Manager plugin for TinyMCE. ------------------------- Affected products: ------------------------- Vulnerable are TinyMCE Image Manager 1.1 and previous versions. -------------------------...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2013/02/11 12:0 a.m.122 views

[SE-2012-01] Details of issues fixed by Feb 2013 Java SE CPU

Hello All, Below, we are providing you with technical details regarding security issues reported by us to Oracle and addressed by the company in a recent Feb 2013 Java SE CPU 1. Issue 29 This issue allows for the creation of arbitrary Proxy objects for interfaces defined in restricted packages...

10CVSS0.2AI score0.07714EPSS
Exploits0
securityvulns
securityvulns
added 2013/01/21 12:0 a.m.122 views

[SE-2012-01] Java 7 Update 11 confirmed to be vulnerable

Hello All, This post might be interesting for those concerned about the state of Oracle's Java SE security. We have successfully confirmed that a complete Java security sandbox bypass can be still gained under the recent version of Java 7 Update 11 1 JRE version 1.7.011-b21. MBeanInstantiator bug...

10CVSS0.2AI score0.97612EPSS
Exploits38
Total number of security vulnerabilities5000