Resin@2.1.2 Security Vulnerabilities and Issues — Resin@2.1.2 CVE List

Lucene search

Caucho TechnologyResin2.1.2

4 matches found

CVE•added 2005/08/05 4:0 a.m.•42 views

CVE-2002-2090

Caucho Technology Resin server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp.

5CVSS6.6AI score0.00346EPSS

CVE•added 2005/07/14 4:0 a.m.•39 views

CVE-2002-1987

Directory traversal vulnerability in view_source.jsp in Resin 2.1.2 allows remote attackers to read arbitrary files via a ".." (backslash dot dot).

5CVSS7AI score0.00229EPSS

CVE•added 2005/07/14 4:0 a.m.•33 views

CVE-2002-1990

Resin 2.0.5 through 2.1.2 allows remote attackers to reveal physical path information via a URL request for the example Java class file HelloServlet.

5CVSS6.6AI score0.00346EPSS

CVE•added 2007/10/25 7:0 p.m.•33 views

CVE-2003-1513

Multiple cross-site scripting (XSS) vulnerabilities in example scripts in Caucho Technology Resin 2.0 through 2.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) env.jsp, (2) form.jsp, (3) session.jsp, (4) the move parameter to tictactoe.jsp, or the (5) name or (6) comment f...

4.3CVSS6AI score0.0029EPSS