BEA : Security Vulnerabilities, CVEs, Published In 2000 CVSS score >= 8
BEA WebLogic 5.1.x does not properly restrict access to the PageCompileServlet, which could allow remote attackers to compile and execute Java JHTML code by directly invoking the servlet on any source file.
Max CVSS
10.0
EPSS Score
3.93%
Published
2000-10-20
Updated
2008-09-10
BEA WebLogic 5.1.x does not properly restrict access to the JSPServlet, which could allow remote attackers to compile and execute Java JSP code by directly invoking the servlet on any source file.
Max CVSS
10.0
EPSS Score
1.05%
Published
2000-10-20
Updated
2008-09-10
Buffer overflow in BEA WebLogic server proxy plugin allows remote attackers to execute arbitrary commands via a long URL with a .JSP extension.
Max CVSS
10.0
EPSS Score
2.00%
Published
2000-10-20
Updated
2008-09-05
3 vulnerabilities found