Getahead Direct Web Remoting — known CVE vulnerabilities
Every CVE whose affected-product data names Getahead Direct Web Remoting, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2006-6916 — CVSS 7.5 (high): Getahead Direct Web Remoting (DWR) before 1.1.3 allows attackers to cause a denial of service (infinite loop) via unknown vectors related…
CVE-2007-0184 — CVSS 7.5 (high): Getahead Direct Web Remoting (DWR) before 1.1.4 allows attackers to obtain unauthorized access to public methods via a crafted request that…
CVE-2007-0185 — CVSS 5.0 (medium): Getahead Direct Web Remoting (DWR) before 1.1.4 allows attackers to cause a denial of service (memory exhaustion and servlet outage) via…
CVE-2007-2377 — CVSS 5.0 (medium): The Getahead Direct Web Remoting (DWR) framework 1.1.4 exchanges data using JavaScript Object Notation (JSON) without an associated…