apache

3,096 tracked vulnerabilities.

CVE-2012-2138
org.apache.sling.servlets.post < 2.1.2 - Denial of Service via @CopyFrom Operation
Jul 09, 2012
EPSS 0.14
CVE-2012-2098
Apache Commons Compress < 1.4.1 - Denial of Service via BZip2CompressorOutputStream Sorting Algorithm
Jun 29, 2012
EPSS 0.13
CVE-2012-2381
Apache Roller < 5.0.1 - Authenticated Cross-Site Scripting
Jun 26, 2012
EPSS 0.03
CVE-2012-2380
Apache Roller < 5.0.1 - Cross-Site Request Forgery via Admin/Editor Console
Jun 26, 2012
EPSS 0.02
CVE-2012-2149
Redhat Enterprise Linux Optional Prod... - Numeric Error
Jun 21, 2012
EPSS 0.13
CVE-2012-1149
LibreOffice < 3.5.3 - Remote Code Execution via Crafted Embedded Image Object
Jun 21, 2012
EPSS 0.14
CVE-2012-2334
OpenOffice.org <3.5.3 - Buffer Overflow
Jun 19, 2012
EPSS 0.13
CVE-2012-0037 MEDIUM
Redland Raptor < 2.0.7 - XML External Entity Injection via RDF Document
Jun 17, 2012
CVSS 6.5
EPSS 0.14
CVE-2012-0883
Apache HTTP Server <2.4.2 - Privilege Escalation
Apr 18, 2012
EPSS 0.01
CVE-2012-1574
Apache Hadoop 0.20.203.0-0.20.205.0, 0.23.x < 0.23.2, 1.0.x < 1.0.2 - User Impersonation via Kerberos/MapReduce
Apr 12, 2012
EPSS 0.05
CVE-2012-0256
Apache Traffic Server <3.0.4-3.1.3 - DoS
Mar 26, 2012
EPSS 0.03
CVE-2012-1089
Apache Wicket <1.4.20, <1.5.5 - Path Traversal
Mar 23, 2012
EPSS 0.06
CVE-2012-0047
Apache Wicket 1.4.x < 1.4.20 - Cross-Site Scripting via wicket:pageMapName Parameter
Mar 23, 2012
EPSS 0.03
CVE-2012-1181
Apache mod_fcgid 2.3.6 - Denial of Service via FcgidMaxProcessesPerClass Directive Bypass
Mar 19, 2012
EPSS 0.05
CVE-2012-0838
Apache Struts 2 < 2.2.3.1 - Remote Code Execution via OGNL Expression Evaluation
Mar 02, 2012
EPSS 0.14
CVE-2012-0840
Apache Portable Runtime < 1.4.5 - Denial of Service via Hash Collision
Feb 10, 2012
EPSS 0.43
CVE-2012-1007
Apache Struts 1.3.10 - Cross-Site Scripting via Name or Message Parameter
Feb 07, 2012
EPSS 0.34
CVE-2012-1006
Apache Struts 2.0.14 and 2.2.3 - Cross-Site Scripting via Person Edit and Orders Parameters
Feb 07, 2012
EPSS 0.58
CVE-2012-0053
Apache HTTP Server <2.2.21 - Info Disclosure
Jan 28, 2012
EPSS 0.83
CVE-2012-0021
Apache HTTP Server 2.2.17-2.2.21 - Denial of Service via Malformed Cookie in mod_log_config
Jan 28, 2012
EPSS 0.31
CVE-2012-0022
Apache Tomcat 5.5.x < 5.5.35, 6.x < 6.0.34, 7.x < 7.0.23 - Denial of Service via Parameter Handling
Jan 19, 2012
EPSS 0.11
CVE-2012-0031
Apache HTTP Server < 2.0.65 - Denial of Service via Scoreboard Shared Memory Segment
Jan 18, 2012
EPSS 0.03
CVE-2012-0394 NUCLEI
Apache Struts 2.0.0-2.3.16 - Remote Code Execution via DebuggingInterceptor
Jan 08, 2012
EPSS 0.74
CVE-2012-0393
Apache Struts <2.3.1.1 - Code Injection
Jan 08, 2012
EPSS 0.38
CVE-2012-0392 NUCLEI
Apache Struts < 2.3.1.1 - Remote Code Execution via CookieInterceptor
Jan 08, 2012
EPSS 0.97