apache
2,910 tracked vulnerabilities.
CVE-2013-2756
Apache CloudStack <4.0.2 & Citrix CloudPlatform <3.0.6 - Auth Bypass
May 23, 2014
EPSS 0.03
CVE-2013-7372
Apache Harmony <6.0M3 - Cryptographic Protection Bypass
Apr 29, 2014
EPSS 0.01
CVE-2013-2187
Apache Archiva 1.2-1.2.2 and 1.3 < 1.3.8 - Cross-Site Scripting via Home Page Parameters
Apr 22, 2014
EPSS 0.01
CVE-2013-5704
Apache HTTP Server 2.2.22 - Auth Bypass
Apr 15, 2014
EPSS 0.65
CVE-2013-6438
Apache HTTP Server < 2.4.8 - Denial of Service via mod_dav CDATA Parsing
Mar 18, 2014
EPSS 0.40
CVE-2013-4590
Apache Tomcat <6.0.39, 7.x <7.0.50, 8.x <8.0.0-RC10 - Info Disclosure
Feb 26, 2014
EPSS 0.01
CVE-2013-4322
Apache Tomcat < 6.0.39, 7.x < 7.0.50, 8.x < 8.0.0-RC10 - Denial of Service via Chunked Transfer Coding
Feb 26, 2014
EPSS 0.37
CVE-2013-4286
Apache Tomcat < 6.0.39, 7.x < 7.0.47, 8.x < 8.0.0-RC3 - Request Smuggling via Inconsistent HTTP Headers
Feb 26, 2014
EPSS 0.24
CVE-2013-0346
Apache Tomcat 7.x - Information Disclosure via World-Readable Log Directory
Feb 15, 2014
EPSS 0.01
CVE-2013-2055
Apache Wicket <6.8.0 - Info Disclosure
Feb 10, 2014
EPSS 0.02
CVE-2013-1880
Apache ActiveMQ < 5.9.0 - Cross-Site Scripting via Portfolio Publisher Refresh Parameter
Feb 05, 2014
EPSS 0.01
CVE-2013-0177
Apache OFBiz 10.04.x < 10.04.05 and 11.04.01 - Authenticated Cross-Site Scripting via Widget Attributes
Jan 30, 2014
EPSS 0.04
CVE-2013-2192
Apache Hadoop 2.x < 2.0.6-alpha, 0.23.x < 0.23.9, 1.x < 1.2.1 - Authentication Downgrade via RPC Protocol
Jan 24, 2014
EPSS 0.00
CVE-2013-2185
Apache Tomcat < 7.0.39 - Arbitrary File Write via DiskFileItem Deserialization
Jan 19, 2014
EPSS 0.05
CVE-2013-6398
Apache CloudStack < 4.2.1 - Firewall Rule Bypass via Virtual Router Restart
Jan 15, 2014
EPSS 0.01
CVE-2013-4517
Apache Santuario XML Security for Java <1.5.6 - DoS
Jan 11, 2014
EPSS 0.08
CVE-2013-6480
Apache Libcloud 0.12.3-0.13.2 - Exposure of Sensitive Information via DigitalOcean Destroy API
Jan 07, 2014
EPSS 0.01
CVE-2013-6408
Apache Solr < 4.3.1 - XML External Entity Injection via DocumentAnalysisRequestHandler
Dec 07, 2013
EPSS 0.11
CVE-2013-6407
Apache Solr < 4.1.0 - XML External Entity Injection via UpdateRequestHandler
Dec 07, 2013
EPSS 0.11
CVE-2013-6397
Apache Solr < 4.6 - Path Traversal via tr Parameter
Dec 07, 2013
EPSS 0.91
CVE-2013-4558
mod_dav_svn 1.7.11-1.7.13 and 1.8.1-1.8.4 - Denial of Service via Non-Canonical URL
Dec 07, 2013
EPSS 0.02
CVE-2013-4505
Apache Subversion 1.4.0-1.7.13/1.8.0-1.8.4 - Access Restriction Bypass via REPORT Request
Dec 07, 2013
EPSS 0.02
CVE-2013-4212
Apache Roller < 5.0.2 - Remote Code Execution via OGNL Injection in getText Methods
Dec 07, 2013
EPSS 0.87
CVE-2013-4171
Apache Roller < 5.0.2 - Cross-Site Scripting via Search Results in RSS and Atom Feed Templates
Dec 07, 2013
EPSS 0.02
CVE-2013-6357
Apache Tomcat < 5.5.25 - Cross-Site Request Forgery via Manager Application
Nov 13, 2013
EPSS 0.01
Products
http_server 317
tomcat 254
airflow 120
struts 90
traffic_server 82
ofbiz 74
superset 68
openoffice 60
activemq 57
subversion 47
cxf 46
nifi 46
solr 46
cloudstack 45
camel 40
hadoop 37
inlong 32
openmeetings 28
dolphinscheduler 27
ambari 26
tika 25
jspwiki 24
geode 23
shiro 23
spark 22
wicket 22
zeppelin 22
kylin 21
ranger 21
archiva 20
Quick Filters