) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:sun:java_system_portal_server:7.1:*:*:*:*:*:*:*
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2010-4431 |
Unspecified vulnerability in Oracle Sun Java System Portal Server 7.1 and 7.2 allows local users to affect confidentiality via unknown vectors related to Proxy. Published: January 19, 2011; 12:00:01 PM -0500 |
V3.x:(not available) V2.0: 1.0 LOW |
| CVE-2009-4187 |
Multiple cross-site scripting (XSS) vulnerabilities in the Gateway component in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: December 03, 2009; 12:30:02 PM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2009-1796 |
Cross-site scripting (XSS) vulnerability in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to an error page. Published: May 26, 2009; 6:30:00 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2008-6192 |
Multiple cross-site scripting (XSS) vulnerabilities in unspecified Portlets in Sun Java System Portal Server 7.0 and 7.1 allow remote attackers to inject arbitrary web script or HTML via unknown vectors. Published: February 19, 2009; 1:30:00 PM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2008-5549 |
Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote attackers to access local files and read the product's configuration information via unknown vectors related to "access to secure files by ThemeServlet." Published: December 12, 2008; 1:30:03 PM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |