Websphere Application Server@6.0 Security Vulnerabilities and Issues — Websphere Application Server@6.0 CVE List

Lucene search

IbmWebsphere Application Server6.0

3 matches found

CVE•added 2005/05/02 4:0 a.m.•85 views

CVE-2005-1112

IBM WebSphere Application Server 6.0 and earlier, when sharing the document root of the web server, allows remote attackers to obtain the source code for Java Server Pages (.jsp) via an HTTP request with an invalid Host header, which causes the page to be processed by the web server instead of the ...

5CVSS6.8AI score0.12153EPSS

CVE•added 2005/05/02 4:0 a.m.•47 views

CVE-2005-0425

Unknown vulnerability in IBM Websphere Application Server 5.0, 5.1, and 6.0 when running on Windows, allows remote attackers to obtain the source code for Java Server Pages (.jsp) via a crafted URL that causes the page to be processed by the file serving servlet instead of the JSP engine.

5CVSS6.5AI score0.00352EPSS

CVE•added 2005/12/20 11:3 a.m.•35 views

CVE-2005-4413

Multiple cross-site scripting (XSS) vulnerabilities in sample scripts in IBM WebSphere Application Server 6 allow remote attackers to inject arbitrary web script or HTML via the (1) E-mail address field to (a) PlantsByWebSphere/login.jsp, (2) message field to (b) TechnologySample/BulletinBoard Scri...

4.3CVSS5.9AI score0.00301EPSS