SUN » Java System Application Server : Security Vulnerabilities, CVEs, (Information Leak)
Sun Java System Application Server (AS) 8.1 and 8.2 allows remote attackers to read the Web Application configuration files in the (1) WEB-INF or (2) META-INF directory via a malformed request.
Max CVSS
5.0
EPSS Score
0.50%
Published
2009-01-27
Updated
2017-08-08
Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote attackers to obtain source code of JSP files via unknown vectors.
Max CVSS
5.0
EPSS Score
0.48%
Published
2008-05-09
Updated
2017-08-08
2 vulnerabilities found