Unify Ewave_servletexec

4 CVEs affecting Unify Ewave_servletexec. Latest disclosed: 2001-01-09. Critical: 0, High: 1.

Top CVEs affecting Unify Ewave_servletexec
CVESeverityScorePublishedSummary
CVE-2000-0498High7.52000-06-08Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
CVE-2000-11142001-01-09Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as ".", or "+", or "%20…
CVE-2000-10252000-12-11eWave ServletExec JSP/Java servlet engine, versions 3.0C and earlier, allows remote attackers to cause a denial of service via a URL that contains the "/servle…
CVE-2000-10242000-12-11eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet, which allows remote attackers to upload files and execute ar…