Java System Application Server CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Sun Subscriptions

Filtered by product Java System Application Server Subscriptions

Search

Switch to Advanced Search (Beta)

Total 22 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2006-3225	1 Sun	2 Java System Application Server, One Application Server	2025-04-03	N/A
Cross-site scripting (XSS) vulnerability in Sun ONE Application Server 7 before Update 9, Java System Application Server 7 2004Q2 before Update 5, and Java System Application Server Enterprise Edition 8.1 2005 Q1 allows remote attackers to inject arbitrary HTML or web script via unknown vectors.
CVE-2006-3921	1 Sun	2 Java System Application Server, Java System Web Server	2025-04-03	N/A
Sun Java System Application Server (SJSAS) 7 through 8.1 and Web Server (SJSWS) 6.0 and 6.1 allows remote authenticated users to read files outside of the "document root directory" via a direct request using a UTF-8 encoded URI.

« first previous Page 2 of 2.