Caucho Technology Resin — known CVE vulnerabilities
Every CVE whose affected-product data names Caucho Technology Resin, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2007-2439 — CVSS 9.4 (critical): Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for Windows allows remote attackers to cause a denial of service (device…
CVE-2006-1953 — CVSS 7.8 (high): Directory traversal vulnerability in Caucho Resin 3.0.17 and 3.0.18 for Windows allows remote attackers to read arbitrary files via a…
CVE-2001-0828 — CVSS 5.1 (medium): A cross-site scripting vulnerability in Caucho Technology Resin before 1.2.4 allows a malicious webmaster to embed Javascript in a…
CVE-2002-1987 — CVSS 5.0 (medium): Directory traversal vulnerability in view_source.jsp in Resin 2.1.2 allows remote attackers to read arbitrary files via a "\.." (backslash…
CVE-2002-1988 — CVSS 5.0 (medium): Resin 2.1.1 allows remote attackers to cause a denial of service (memory consumption and hang) via a URL with long variables for…
CVE-2002-1989 — CVSS 5.0 (medium): Resin 2.1.1 allows remote attackers to cause a denial of service (thread and connection consumption) via multiple URL requests containing…
CVE-2002-1990 — CVSS 5.0 (medium): Resin 2.0.5 through 2.1.2 allows remote attackers to reveal physical path information via a URL request for the example Java class file…
CVE-2002-2090 — CVSS 5.0 (medium): Caucho Technology Resin server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names…
CVE-2004-0280 — CVSS 5.0 (medium): Caucho Technology Resin 2.1.12 allows remote attackers to view JSP source via an HTTP request to a .jsp file that ends in a "%20" (encoded…
CVE-2006-2437 — CVSS 5.0 (medium): The viewfile servlet in the documentation package (resin-doc) for Caucho Resin 3.0.17 and 3.0.18 allows remote attackers to obtain the…
CVE-2006-2438 — CVSS 5.0 (medium): Directory traversal vulnerability in the viewfile servlet in the documentation package (resin-doc) for Caucho Resin 3.0.17 and 3.0.18…
CVE-2007-2441 — CVSS 5.0 (medium): Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for Windows allows remote attackers to obtain the system path via…
CVE-2001-0304 — CVSS 5.0 (medium): Directory traversal vulnerability in Caucho Resin 1.2.2 allows remote attackers to read arbitrary files via a "\.." (dot dot) in a URL…
CVE-2001-0399 — CVSS 5.0 (medium): Caucho Resin 1.3b1 and earlier allows remote attackers to read source code for Javabean files by inserting a .jsp before the WEB-INF…
CVE-2000-1224 — CVSS 5.0 (medium): Caucho Technology Resin 1.2 and possibly earlier allows remote attackers to view JSP source via an HTTP request to a .jsp file with certain…
CVE-2007-2440 — CVSS 5.0 (medium): Directory traversal vulnerability in Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for Windows allows remote attackers…
CVE-2003-1513 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in example scripts in Caucho Technology Resin 2.0 through 2.1.2 allow remote attackers…