Vulnerabilities
Vulnerable Software
Macromedia:  >> Jrun  Security Vulnerabilities
Allaire JRun 2.3 server allows remote attackers to obtain source code for executable content by directly calling the SSIFilter servlet.
CVSS Score
5.0
EPSS Score
0.006
Published
2000-12-11
Allaire JRun 2.3.3 server allows remote attackers to compile and execute JSP code by inserting it via a cross-site scripting (CSS) attack and directly calling the com.livesoftware.jrun.plugins.JSP JSP servlet.
CVSS Score
10.0
EPSS Score
0.088
Published
2000-12-11
Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet.
CVSS Score
6.4
EPSS Score
0.005
Published
2000-06-22
JSP sample files in Allaire JRun 2.3.x allow remote attackers to access arbitrary files (e.g. via viewsource.jsp) or obtain configuration information.
CVSS Score
5.0
EPSS Score
0.006
Published
2000-06-22


Contact Us

Shodan ® - All rights reserved