Vulnerability Database

311,377

Total vulnerabilities in the database

CVE-2007-6572

Cross-site scripting (XSS) vulnerability in Sun Java System Web Server 6.1 before SP8 and 7.0 before Update 1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka BugID 6566204.

  • Published: Dec 28, 2007
  • Updated: Nov 9, 2025
  • CVE: CVE-2007-6572
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
sun / java_system_web_server 6.0-sp9 6.0-sp9.x
sun / java_system_web_server 6.1-sp1 6.1-sp1.x
sun / java_system_web_proxy_server 3.6-sp1 3.6-sp1.x
sun / java_system_web_server 6.1-sp6 6.1-sp6.x
sun / java_system_web_server 6.0-sp1 6.0-sp1.x
sun / java_system_web_proxy_server 4.0-sp1 4.0-sp1.x
sun / java_system_web_proxy_server 3.6-sp6 3.6-sp6.x
sun / java_system_web_proxy_server 4.0.2 4.0.2.x
sun / java_system_web_server 6.0-sp10 6.0-sp10.x
sun / java_system_web_server 6.0 6.0.x
sun / java_system_web_proxy_server 3.6-sp9 3.6-sp9.x
sun / java_system_web_proxy_server 3.6-sp2 3.6-sp2.x
sun / java_system_web_server 6.1-sp3 6.1-sp3.x
sun / java_system_web_server 6.0-sp4 6.0-sp4.x
sun / java_system_web_server 6.0-sp6 6.0-sp6.x
sun / java_system_web_proxy_server 3.6-sp5 3.6-sp5.x
sun / java_system_web_server 6.0-sp2 6.0-sp2.x
sun / java_system_web_proxy_server 3.6-sp8 3.6-sp8.x
sun / java_system_web_server 6.1 6.1.x
sun / java_system_web_server 6.0-sp7 6.0-sp7.x
sun / java_system_web_server 6.1-sp4 6.1-sp4.x
sun / java_system_web_proxy_server 3.6-sp7 3.6-sp7.x
sun / java_system_web_proxy_server 4.0 4.0.x
sun / java_system_web_proxy_server 4.0.4 4.0.4.x
sun / java_system_web_proxy_server 4.0.5 4.0.5.x
sun / java_system_web_server 6.1-sp5 6.1-sp5.x
sun / java_system_web_proxy_server 3.6-sp4 3.6-sp4.x
sun / java_system_web_server 7.0 7.0.x
sun / java_system_web_proxy_server 3.6-sp3 3.6-sp3.x
sun / java_system_web_server 6.0-sp8 6.0-sp8.x
sun / java_system_web_server 6.0-sp3 6.0-sp3.x
sun / java_system_web_proxy_server 3.6 3.6.x
sun / java_system_web_server 6.0-sp5 6.0-sp5.x
sun / java_system_web_proxy_server 3.6-sp10 3.6-sp10.x
sun / java_system_web_server 6.1-sp2 6.1-sp2.x
sun / java_system_web_server 6.1-sp7 6.1-sp7.x
sun / java_system_web_proxy_server 4.0.3 4.0.3.x