Filter
AND

Software

apache http server
168
apache tomcat
124
apache airflow
50
apache struts
34
apache superset
34
apache subversion
28
apache cxf
22
apache activemq
20
apache jspwiki
18
apache nifi
17
apache openoffice
16
apache ofbiz
15
apache tika
14
apache archiva
13
apache solr
13
apache qpid
12
apache cloudstack
11
apache couchdb
10
apache ambari
9
apache traffic server
9
apache atlas
8
apache ranger
8
apache wicket
8
apache druid
7
apache hadoop
7
apache openmeetings
7
apache poi
7
apache roller
7
apache spark
7
apache cordova android
6
apache geode
6
apache james
6
apache pdfbox
6
apache pulsar
6
apache syncope
6
apache commons compress
5
apache dolphinscheduler
5
apache guacamole
5
apache hive
5
apache karaf
5
apache pluto
5
apache santuario xml security for java
5
apache spamassassin
5
apache activemq artemis
4
apache allura
4
apache answer
4
apache apr-util
4
apache axis
4
apache axis2
4
apache batik
4
apache camel
4
apache geronimo
4
apache httpclient
4
apache inlong
4
apache juddi
4
apache kafka
4
apache ozone
4
apache sling
4
apache sling cms
4
apache zeppelin
4
apache ant
3
apache derby
3
apache drill
3
apache linkis
3
apache log4j
3
apache mesos
3
apache mod python
3
apache myfaces
3
apache oozie
3
apache portable runtime
3
apache sshd
3
apache storm
3
apache streampark
3
apache tomee
3
apache wss4j
3
apache xerces-c\+\+
3
apache xml security for c\+\+
3
apache bookkeeper
2
apache cassandra
2
apache commons jxpath
2
apache deltaspike
2
apache dubbo
2
apache fineract
2
apache ignite
2
apache impala
2
apache isis
2
apache jackrabbit
2
apache jetspeed
2
apache knox
2
apache kylin
2
apache mina
2
apache mina sshd
2
apache openoffice.org
2
apache org.apache.sling.servlets.post
2
apache pony mail
2
apache portable runtime utility
2
apache qpid broker-j
2
apache qpid proton
2
apache shiro
2
apache sling api
2
apache sling servlets post
2
apache traffic control
2
apache airavata django portal
1
apache airflow cncf kubernetes
1
apache any23
1
apache apache axis2\/c
1
apache apache commons daemon
1
apache apache http server
1
apache apache webserver
1
apache apache-airflow-providers-apache-spark
1
apache apache-airflow-providers-imap
1
apache apache-airflow-providers-microsoft-mssql
1
apache apache-airflow-providers-odbc
1
apache apache-airflow-providers-smtp
1
apache apisix
1
apache apisix dashboard
1
apache asterixdb
1
apache brooklyn
1
apache brpc
1
apache calcite
1
apache cocoon
1
apache commons io
1
apache commons net
1
apache commons-httpclient
1
apache continuum
1
apache cordova
1
apache cordova file transfer
1
apache felix health check webconsole plugin
1
apache felix health checks
1
apache flex
1
apache flink
1
apache flink stateful functions
1
apache gobblin
1
apache groovy
1
apache harmony
1
apache hbase
1
apache helix
1
apache http server2.0a1
1
apache http server2.0a2
1
apache http server2.0a3
1
apache http server2.0a4
1
apache http server2.0a5
1
apache http server2.0a6
1
apache http server2.0a7
1
apache http server2.0a8
1
apache http server2.0a9
1
apache httpasyncclient
1
apache hupa
1
apache jena
1
apache jena fuseki
1
apache johnzon
1
apache kudu
1
apache libapreq2
1
apache libcloud
1
apache livy
1
apache log4net
1
apache manifoldcf
1
apache maven
1
apache maven wagon
1
apache mod auth radius
1
apache mod fcgid
1
apache mod imap
1
apache mod perl
1
apache mod-gnutls
1
apache mxnet
1
apache myfaces tomahawk
1
apache nifi minifi c\+\+
1
apache nifi registry
1
apache olingo
1
apache opentaps
1
apache qpid dispatch
1
apache qpid-cpp
1
apache rampart\/c
1
apache rave
1
apache rocketmq
1
apache shardingsphere elasticjob-ui
1
apache shenyu
1
apache shindig
1
apache sling auth core component
1
apache sling commons log
1
apache sling i18n
1
apache sling xss protection api
1
apache sling xss protection api compat
1
apache sshj
1
apache streampipes
1
apache tapestry
1
apache teaclave sgx sdk
1
apache thrift
1
apache tiles
1
apache tomcat connectors
1
apache tomcat jk web server connector
1
apache tomcat native
1
apache uimaducc
1
apache velocity tools
1
apache ws-xmlrpc
1
apache xerces-j
1
apache xerces2 java
1
apache xml graphics batik
1
apache zookeeper
1

Oracle Banking ApisPossible limited path traversal vulnerabily in Apache Commons IO

First published (updated )

Apache TomcatXSS

First published (updated )

Google AndroidInteger Overflow

First published (updated )

IBM Cognos AnalyticsApache Commons Compress: OutOfMemoryError unpacking broken Pack200 file

EPSS
0.06%
First published (updated )

Eclipse JettyXSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Financial Services Enterprise Case ManagementTiming Attack Vulnerability for Apache Kafka Connect and Clients

First published (updated )

Apache Santuario XML Security for JavaApache Santuario: Private Key disclosure in debug-log output

First published (updated )

go/github.com/apache/incubator-answerApache Answer: Repeated submission at registration created duplicate users with the same name

EPSS
0.04%
First published (updated )

go/github.com/apache/incubator-answerApache Answer: XSS vulnerability when submitting summary

EPSS
0.04%
First published (updated )

pip/apache-airflowApache Airflow: Cache Control - Storage of Sensitive Data in Browser Cache

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache AirflowApache Airflow: XSS vulnerability in Task Instance Log/Log Details

First published (updated )

redhat/eap7-activemq-artemis-nativeApache James MIME4J: Temporary File Information Disclosure in MIME4J TempFileStorageProvider

First published (updated )

Apache SyncopeApache Syncope: HTML tags can be injected into Console or Enduser text fields

First published (updated )

Redhat Openstack PlatformImpact of Terrapin SSH Attack

First published (updated )

pip/apache-airflowApache Airflow: Improper access control vulnerability on the "varimport" endpoint

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

pip/apache-airflowApache Airflow: Missing CSRF protection on DAG/trigger

First published (updated )

pip/apache-airflowApache Airflow: Improper access control to DAG resources

First published (updated )

pip/apache-airflowApache Airflow: DAG Params alllow to embed unchecked Javascript

First published (updated )

Apache Portable RuntimeApache Portable Runtime (APR): Unexpected lax shared memory permissions

First published (updated )

Apache AirflowApache Airflow missing fix for CVE-2023-40611 in 2.7.1 (DAG run broken access)

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

CVE-2023-46851Apache Allura: sensitive information exposure via import

First published (updated )

CVE-2023-46819Apache OFBiz: Execution of Solr plugin queries without authentication

First published (updated )

Apache ShiroApache Shiro before 1.13.0 or 2.0.0-alpha-4, may be susceptible to a path traversal attack that results in an authentication bypass when used together with path rewriting

First published (updated )

Apache AirflowApache Airflow: Sensitive parameters exposed in API when "non-sensitive-only" configuration is set

First published (updated )

ubuntu/apache2Apache HTTP Server: HTTP/2 stream memory not reclaimed right away on RST

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache bRPCApache bRPC: The builtin service rpcz page has an XSS attack vulnerability

First published (updated )

Apache TomcatApache Tomcat: Open redirect with FORM authentication

First published (updated )

Apache HelixApache Helix: Open redirect

First published (updated )

Apache ZeppelinApache Zeppelin: Stored XSS in note permissions

First published (updated )

Apache Sling CmsApache Sling App CMS: XSS in CMS Site Group Detail

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203