Filter
AND
-Infinity
0
Trending
Software
apache http server
36
apache struts 2
27
apache ofbiz
20
apache openoffice
20
apache dubbo
13
apache hadoop
12
apache traffic server
12
apache airflow
11
apache log4j
11
apache inlong
10
apache shiro
9
apache solr
8
apache activemq
7
apache cloudstack
7
apache kylin
7
apache couchdb
6
apache cxf
6
apache geode
6
apache ignite
5
apache linkis
5
apache openmeetings
5
apache superset
5
apache tapestry
5
apache airflow hive provider
4
apache dolphinscheduler
4
apache fineract
4
apache iotdb
4
apache nifi
4
apache nuttx
4
apache portable runtime
4
apache ranger
4
apache spark
4
apache storm
4
apache struts 2 showcase
4
apache submarine
4
apache tomee
4
apache ambari
3
apache any23
3
apache cassandra
3
apache flume
3
apache james
3
apache jmeter
3
apache karaf
3
apache ozone
3
apache pulsar
3
apache shenyu
3
apache traffic control
3
apache xerces-c++
3
apache apisix
2
apache batik
2
pip/apache-airflowApache Airflow Pinot provider allowed Command Injection
9.8
First published (updated )
IBM Operational Decision ManagerApache MINA: MINA applications using unbounded deserialization may allow RCE
10
First published (updated )
pip/apache-airflow-providers-mongoApache Airflow Mongo Provider: Certificate validation isn't respected even if SSL is enabled for apache-airflow-providers-mongo
9.1
EPSS
0.04%
First published (updated )
Apache DolphinSchedulerApache DolphinScheduler prior to 2.0.5 have command execution vulnerability
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
F5 BIG-IP and BIG-IQ Centralized ManagementApache HTTP Server weakness with encoded question marks in backreferences
9.8
First published (updated )
Apache DdlUtilsApache ddlutils 1.0 readobject vulnerability
9.8
First published (updated )
Apache ActiveMQ NMS OpenWire ClientApache ActiveMQ NMS OpenWire Client: deserialization allowlist bypass
9.8
First published (updated )
ubuntu/zookeeperApache ZooKeeper: Authorization bypass in SASL Quorum Peer Authentication
9.1
First published (updated )
Apache RocketMQApache RocketMQ: Possible remote code execution when using the update configuration function
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache AuroraApache Aurora: padding oracle can allow construction an authentication cookie
9.1
EPSS
0.04%
First published (updated )
redhat/eap7-apache-cxfApache CXF SSRF Vulnerability
9.8
First published (updated )
Apache Struts 2Apache Struts Remote Code Execution Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
TomcatApache Tomcat Remote Code Execution Vulnerability
First published (updated )
Apache Struts 2Apache Struts 1 Improper Input Validation Vulnerability
First published (updated )
PHPUnitPHPUnit Command Injection Vulnerability
First published (updated )
maven/org.apache.storm:stormThe UI daemon in Apache Storm 0.10.0 before 0.10.0-beta1 allows remote attackers to execute arbitrar…
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache PinotApache Pinot: Authentication bypass issue. If the path does not contain / and contain . authentication is not required
9.8
First published (updated )
Apache Airflow Hive ProviderApache Airflow Hive Provider: Hive Provider RCE vulnerability with hive_cli_params
9.8
First published (updated )
Apache KarafApache Karaf: JDBC JAAS LDAP injection
9.8
First published (updated )
Apache ShardingSphere-UIApache ShardingSphere-Proxy: MySQL authentication bypass
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache ShiroApache Shiro Code Execution Vulnerability
First published (updated )
redhat/javaOracle Java SE and JRockit Unspecified Vulnerability
First published (updated )
Apache ActiveMQApache ActiveMQ Improper Input Validation Vulnerability
First published (updated )
Apache KylinApache Kylin: Command injection by Diagnosis Controller
9.8
First published (updated )
Apache Struts 2Apache Struts Improper Input Validation Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.