Java System Communications Express Security Vulnerabilities and Issues — Java System Communications Express CVE List

Lucene search

SunJava System Communications Express

5 matches found

CVE•added 2005/11/03 2:2 a.m.•46 views

CVE-2005-3472

Unspecified vulnerability in Sun Java System Communications Express 2005Q1 and 2004Q2 allows local and remote attackers to read sensitive information from configuration files.

5CVSS5.9AI score0.00568EPSS

CVE•added 2010/04/01 10:30 p.m.•46 views

CVE-2010-1227

Cross-site scripting (XSS) vulnerability in Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to inject arbitrary web script or HTML via the subject field of a message, as demonstrated by a subject containing an IMG element with a SRC attribute that performs a cross-site re...

4.3CVSS6AI score0.00226EPSS

CVE•added 2011/01/19 5:0 p.m.•43 views

CVE-2010-4456

Unspecified vulnerability in Oracle Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to affect integrity via unknown vectors related to Web Mail.

4.3CVSS6.1AI score0.00488EPSS

CVE•added 2009/05/21 2:30 p.m.•42 views

CVE-2009-1729

Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Communications Express 6 2005Q4 (aka 6.2) and 6.3 allow remote attackers to inject arbitrary web script or HTML via (1) the abperson_displayName parameter to uwc/abs/search.xml in the Add Contact implementation in the Personal A...

4.3CVSS5.7AI score0.09115EPSS

CVE•added 2009/03/12 3:20 p.m.•33 views

CVE-2009-0877

Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Communications Express allow remote attackers to inject arbitrary web script or HTML via the (1) Full Name or (2) Subject field.

4.3CVSS5.9AI score0.00226EPSS