Java System Web Server@6.1 Security Vulnerabilities and Issues — Java System Web Server@6.1 CVE List

Lucene search

SunJava System Web Server6.1

2 matches found

CVE•added 2008/06/03 2:32 p.m.•39 views

CVE-2008-2518

Cross-site scripting (XSS) vulnerability in the advanced search mechanism (webapps/search/advanced.jsp) in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, probably related to the next parameter...

4.3CVSS5.5AI score0.00529EPSS

CVE•added 2008/05/13 8:20 p.m.•37 views

CVE-2008-2166

Cross-site scripting (XSS) vulnerability in the search module in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 2 allows remote attackers to inject arbitrary web script or HTML via unknown parameters in index.jsp.

4.3CVSS5.4AI score0.00529EPSS