Vulnerabilities (CVE)

Filtered by vendor Fujitsu Subscribe
Filtered by product Interstage Apworks
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-5366 1 Fujitsu 3 Interstage Application Server, Interstage Apworks, Interstage Studio 2024-11-21 5.0 MEDIUM N/A
The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information (web root path) via unspecified vectors that trigger an error message, probably related to enabling the useCanonCaches Java Virtual Machine (JVM) option.
CVE-2007-1504 1 Fujitsu 2 Interstage Application Server, Interstage Apworks 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Servlet Service in Fujitsu Interstage Application Server (IJServer) 8.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving web.xml and HTTP 404 and 500 status codes.