Product Bea Weblogic

Affected Versions (48): 3.0, 3.1, 3.1.8, 3.2, 3.2.1, 3.3, 3.4, 3.5, 3.6, 4, 4.0.4, 4.5, 4.5.1, 4.5.2, 5.0, 5.1, 6.0, 6.1, 6.1 SP 2, 6.1 SP2, 6.1 SP6, 6.1 SP7, 7, 7.0, 7.0 SP 1, 7.0 SP3, 7.0 SP5, 7.0.0.1, 7.0.0.1 SP 1, 7.0.0.1 SP2, 8.0, 8.0 SP2, 8.1, 8.1 SP1, 8.1 SP2, 8.1 SP3, 8.1 SP4, 8.1 SP5, 8.1.1, 8.1.2, 8.1.3, 8.1.4, 8.1.5, 8.3, 9.0, 9.1, 9.2, 10.0

Link to Product Website: https://www.oracle.com/corporate/acquisitions/bea/

Software Type: Application Server Software

PublishedBaseTempVulnerability0dayTodayExpRemCTICVE
07/22/200810.010.0BEA WebLogic Server mod_wl .jsp memory corruption$25k-$100k$0-$5kHighNot Defined0.04CVE-2008-3257
02/22/20085.34.8BEA WebLogic Server denial of service$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2008-0903
02/22/20084.34.1BEA WebLogic Server cross site scripting$5k-$25k$0-$5kProof-of-ConceptNot Defined0.00CVE-2008-0902
02/22/20087.57.1BEA WebLogic Server credentials management$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.00CVE-2008-0901
02/22/20086.36.0BEA WebLogic Server access control$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.00CVE-2008-0900
02/22/20084.34.1BEA WebLogic Server Administration Console cross site scripting$5k-$25k$0-$5kProof-of-ConceptNot Defined0.03CVE-2008-0899
02/22/20086.56.2BEA WebLogic Server Access Restriction access control$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.04CVE-2008-0898
02/22/20088.17.7BEA WebLogic Server Access Restriction access control$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.03CVE-2008-0897
02/22/20085.44.9BEA WebLogic Portal Access Restriction access control$5k-$25k$5k-$25kProof-of-ConceptOfficial Fix0.00CVE-2008-0896
02/22/20086.56.2BEA WebLogic Server improper authentication$5k-$25k$0-$5kProof-of-ConceptNot Defined0.03CVE-2008-0895
02/20/20087.36.9BEA WebLogic Portal Administration Console link following$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.00CVE-2008-0870
02/20/20084.33.9BEA WebLogic Workshop UI Framework cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2008-0869
02/20/20084.33.9BEA WebLogic Portal cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2008-0868
02/20/20084.34.1BEA WebLogic Workshop cross site scripting$5k-$25k$0-$5kProof-of-ConceptNot Defined0.05CVE-2008-0866
02/20/20085.35.0BEA WebLogic Portal access control$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.09CVE-2008-0865
02/20/20085.35.0BEA WebLogic Portal Access Restriction access control$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.03CVE-2008-0864
02/20/20085.35.0BEA WebLogic Server information disclosure$5k-$25k$0-$5kProof-of-ConceptNot Defined0.09CVE-2008-0863
12/12/20077.36.9BEA WebLogic Mobility Server improper authentication$5k-$25k$0-$5kProof-of-ConceptNot Defined0.04CVE-2007-6384
08/30/20076.56.2BEA WebLogic Server information disclosure$5k-$25k$0-$5kHighOfficial Fix0.03CVE-2007-4616
08/30/20076.56.2BEA WebLogic Server unknown vulnerability$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.06CVE-2007-4615
08/28/20077.56.5BEA WebLogic Server denial of service$5k-$25k$0-$5kProof-of-ConceptNot Defined0.00CVE-2007-4618
08/28/20077.57.1BEA WebLogic Server denial of service$5k-$25k$0-$5kProof-of-ConceptNot Defined0.06CVE-2007-4617
05/23/20077.57.1BEA WebLogic Server Administration Console Privilege Escalation$25k-$100k$5k-$25kProof-of-ConceptNot Defined0.07CVE-2007-2699
05/14/20077.86.8BEA Weblogic Workshop information disclosure$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2007-5576
05/14/20077.57.1BEA WebLogic Workshop Console path traversal$5k-$25k$0-$5kProof-of-ConceptNot Defined0.06CVE-2007-2705

more entries by Bea

Interested in the pricing of exploits?

See the underground prices here!