Sun Java System Portal Server vulnerabilities
6 known vulnerabilities affecting sun/java_system_portal_server.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM5LOW1
Vulnerabilities
Page 1 of 1
CVE-2010-4431LOWCVSS 1.0v7.1v7.22011-01-19
CVE-2010-4431 [LOW] CVE-2010-4431: Unspecified vulnerability in Oracle Sun Java System Portal Server 7.1 and 7.2 allows local users to
Unspecified vulnerability in Oracle Sun Java System Portal Server 7.1 and 7.2 allows local users to affect confidentiality via unknown vectors related to Proxy.
nvd
CVE-2009-4187MEDIUMCVSS 4.3v7.1v7.2+1 more2009-12-03
CVE-2009-4187 [MEDIUM] CWE-79 CVE-2009-4187: Multiple cross-site scripting (XSS) vulnerabilities in the Gateway component in Sun Java System Port
Multiple cross-site scripting (XSS) vulnerabilities in the Gateway component in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
CVE-2009-1796MEDIUMCVSS 4.3v6.3.1v7.1+1 more2009-05-26
CVE-2009-1796 [MEDIUM] CWE-79 CVE-2009-1796: Cross-site scripting (XSS) vulnerability in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allows
Cross-site scripting (XSS) vulnerability in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to an error page.
nvd
CVE-2008-6192MEDIUMCVSS 4.3v7.0v7.12009-02-19
CVE-2008-6192 [MEDIUM] CWE-79 CVE-2008-6192: Multiple cross-site scripting (XSS) vulnerabilities in unspecified Portlets in Sun Java System Porta
Multiple cross-site scripting (XSS) vulnerabilities in unspecified Portlets in Sun Java System Portal Server 7.0 and 7.1 allow remote attackers to inject arbitrary web script or HTML via unknown vectors.
nvd
CVE-2008-5549MEDIUMCVSS 5.0v7.1v7.22008-12-12
CVE-2008-5549 [MEDIUM] CWE-264 CVE-2008-5549: Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.
Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote attackers to access local files and read the product's configuration information via unknown vectors related to "access to secure files by ThemeServlet."
nvd
CVE-2007-4289MEDIUMCVSS 6.8v7.02007-08-09
CVE-2007-4289 [MEDIUM] CVE-2007-4289: Sun Java System Portal Server 7.0 does not properly process XSLT stylesheets in XSLT transforms in X
Sun Java System Portal Server 7.0 does not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute an arbitrary Java method via a crafted stylesheet, a related issue to CVE-2007-3715.
nvd