apache
2,910 tracked vulnerabilities.
CVE-2014-0111
Apache Syncope 1.0.0-1.0.8 and 1.1.0-1.1.6 - Authenticated Remote Code Execution via JEXL Expression Injection
Apr 17, 2014
EPSS 0.01
CVE-2014-0107
Apache Xalan-Java <2.7.2 - Code Injection
Apr 15, 2014
EPSS 0.06
CVE-2014-0050
Apache Commons FileUpload <1.3.1 - DoS
Apr 01, 2014
EPSS 0.93
CVE-2014-2668
Apache CouchDB < 1.5.0 - Denial of Service via /_uuids Count Parameter
Mar 28, 2014
EPSS 0.49
CVE-2014-0003
Apache Camel <2.11.4, <2.12.3 - RCE
Mar 21, 2014
EPSS 0.23
CVE-2014-0002
Apache Camel < 2.11.4 and 2.12.x < 2.12.3 - XML External Entity Injection via XSLT Component
Mar 21, 2014
EPSS 0.29
CVE-2014-0098
Apache HTTP Server < 2.4.8 - Denial of Service via Crafted Cookie in mod_log_config
Mar 18, 2014
EPSS 0.51
CVE-2014-0094
Apache Struts 2.0.0-2.3.16.1 - Remote Code Execution via Class Parameter Manipulation
Mar 11, 2014
EPSS 0.93
CVE-2014-1884
Apache Cordova <3.3.0-Adobe PhoneGap <2.9.0 - CSRF
Mar 03, 2014
EPSS 0.02
CVE-2014-1882
Apache Cordova <3.3.0-Adobe PhoneGap <2.9.0 - CSRF
Mar 03, 2014
EPSS 0.08
CVE-2014-1881
Apache Cordova <3.3.0-Adobe PhoneGap <2.9.0 - CSRF
Mar 03, 2014
EPSS 0.02
CVE-2014-0033
Apache Tomcat 6.0.33-6.0.37 - Session Fixation
Feb 26, 2014
EPSS 0.16
CVE-2014-0032
Apache Subversion <1.7.15, <1.8.6 - DoS
Feb 14, 2014
EPSS 0.27
CVE-2014-0031
Apache CloudStack <4.2.1 - Info Disclosure
Jan 15, 2014
EPSS 0.00
CVE-2013-7285
CRITICAL
NUCLEI
Oracle Endeca Information Discovery Studio - Remote Code Execution via XStream Input Stream Manipulation
May 15, 2019
CVSS 9.8
EPSS 0.19
CVE-2013-0267
HIGH
Apache VCL 2.1-2.2.1, 2.3-2.3.1 - Privilege Escalation, DoS, and XSS via Improper Data Validation
Feb 21, 2018
CVSS 8.8
EPSS 0.00
CVE-2013-4317
MEDIUM
Apache CloudStack 4.1.0-4.1.1 - Unauthorized Exposure of Sensitive Information via listProjectAccounts API
Feb 06, 2018
CVSS 4.3
EPSS 0.00
CVE-2013-4366
CRITICAL
Apache HttpClient 4.3.x < 4.3.1 - Improper Input Validation in HttpClientBuilder
Oct 30, 2017
CVSS 9.8
EPSS 0.01
CVE-2013-4246
HIGH
Apache Subversion 1.8.x - Authenticated Repository Corruption via Packed Revision Properties
Oct 30, 2017
CVSS 8.8
EPSS 0.00
CVE-2013-4444
Apache Tomcat < 7.0.40 - Remote Code Execution via JSP File Upload
Sep 12, 2014
EPSS 0.09
CVE-2013-7393
Subversion <1.8.2 - Privilege Escalation
Jul 28, 2014
EPSS 0.00
CVE-2013-4262
Subversion 1.8.0-1.8.2 - Privilege Escalation via PID File Symlink Attack
Jul 28, 2014
EPSS 0.00
CVE-2013-4352
Apache HTTP Server 2.4.6 - Denial of Service via Missing Hostname in mod_cache
Jul 20, 2014
EPSS 0.24
CVE-2013-2193
Apache HBase < 0.92.3, 0.94.x < 0.94.9 - Kerberos Authentication Bypass
May 29, 2014
EPSS 0.00
CVE-2013-2758
Apache CloudStack 4.0.0-4.0.2 and Citrix CloudPlatform 3.0.x-3.0.6 - Predictable Console Access URL
May 23, 2014
EPSS 0.03
Products
http_server 317
tomcat 254
airflow 120
struts 90
traffic_server 82
ofbiz 74
superset 68
openoffice 60
activemq 57
subversion 47
cxf 46
nifi 46
solr 46
cloudstack 45
camel 40
hadoop 37
inlong 32
openmeetings 28
dolphinscheduler 27
ambari 26
tika 25
jspwiki 24
geode 23
shiro 23
spark 22
wicket 22
zeppelin 22
kylin 21
ranger 21
archiva 20
Quick Filters