CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jboss: >> Jboss >> 3.2.1 Security Vulnerabilities

CVE-2007-1157

Cross-site request forgery (CSRF) vulnerability in jmx-console/HtmlAdaptor in JBoss allows remote attackers to perform privileged actions as administrators via certain MBean operations, a different vulnerability than CVE-2006-3733.

CVSS Score

7.6

EPSS Score

0.004

Published

2007-03-02

CVE-2003-0845

Unknown vulnerability in the HSQLDB component in JBoss 3.2.1 and 3.0.8 on Java 1.4.x platforms, when running in the default configuration, allows remote attackers to conduct unauthorized activities and possibly execute arbitrary code via certain SQL statements to (1) TCP port 1701 in JBoss 3.2.1, and (2) port 1476 in JBoss 3.0.8.

CVSS Score

7.5

EPSS Score

0.189

Published

2003-11-17

Page 1

Vulnerabilities

Vulnerable Software

Jboss: >> Jboss >> 3.2.1 Security Vulnerabilities

Products

Pricing

Contact Us