Enterprise Server CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-1999-0269	1 Netscape	1 Enterprise Server	2025-04-03	N/A
Netscape Enterprise servers may list files through the PageServices query.
CVE-1999-0007	5 C2net, Hp, Microsoft and 2 more	13 Stonghold Web Server, Open Market Secure Webserver, Exchange Server and 10 more	2025-04-03	N/A
Information from SSL-encrypted sessions via PKCS #1.
CVE-1999-0045	2 Apache, Netscape	4 Http Server, Commerce Server, Communications Server and 1 more	2025-04-03	N/A
List of arbitrary files on Web host via nph-test-cgi script.
CVE-2018-18940	1 Netscape	1 Enterprise Server	2024-11-21	N/A
servlet/SnoopServlet (a servlet installed by default) in Netscape Enterprise 3.63 has reflected XSS via an arbitrary parameter=[XSS] in the query string. A remote unauthenticated attacker could potentially exploit this vulnerability to supply malicious HTML or JavaScript code to a vulnerable web application, which is then reflected back to the victim and executed by the web browser. NOTE: this product is discontinued.

« first previous Page 2 of 2.