Recently modified critical severity vulnerabilities for vendor "owasp"

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Trending

Software

Oracle WebLogic ServerPath Traversal in ESAPI

Oracle UnifierThe OWASP Java HTML Sanitizer before 20211018.1 does not properly enforce policies associated with t…

OWASP ModSecurity Core Rule Setcoreruleset (aka OWASP ModSecurity Core Rule Set) through 3.3.4 does not block multiple Content-Type…

OWASP ModSecurity Core Rule SetSQL Injection

OWASP ModSecurity Core Rule SetOWASP ModSecurity Core Rule Set 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.2 is af…

Never miss a vulnerability like this again

OWASP Java HTML SanitizerXEE

Red Hat FedoraPartial rule set bypass in OWASP ModSecurity Core Rule Set for HTTP multipart requests using character encoding in the Content-Type or Content-Transfer-Encoding header

Red Hat FedoraPartial rule set bypass in OWASP ModSecurity Core Rule Set by submitting a specially crafted HTTP Content-Type header

Company

Resources

Contact