VYPR

Vendor CVEs

Apache

All CVEs

2,550 total · sorted by risk
  • CVE-2026-48589MedMay 25, 2026
    risk 0.35cvss 5.4epss 0.00

    Apache Shiro’s Jakarta EE module used the HTTP Referer header in certain cases to issue redirect after a user login. In affected versions, insufficient validation of this client-controlled value could allow an attacker to influence the redirect target in applications using the…

  • CVE-2026-44598MedMay 25, 2026
    risk 0.35cvss 5.4epss 0.00

    With valid login credentials, URL Redirection to Untrusted Site ('Open Redirect'), Server-Side Request Forgery (SSRF) vulnerability in Apache Shiro. This issue affects Apache Shiro from 2.0-alpha to 2.1.0, and 3.0.0-alpha-1, only when using shiro-jakarta-ee integration…

  • CVE-2026-8503MedMay 15, 2026
    risk 0.35cvss 6.5epss 0.00

    Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. Apache::Session::Generate::SHA256 generated session ids insecurely. The default session id generator returns a SHA-256 hash of the built-in rand() function, the epoch time, and the…

  • CVE-2026-43826MedMay 11, 2026
    risk 0.35cvss 6.5epss 0.00

    The OpenSearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the embedded credentials — into task logs. Any user with task-log read permission…

  • CVE-2026-41018MedMay 11, 2026
    risk 0.35cvss 6.5epss 0.00

    The Elasticsearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the embedded credentials — into task logs. Any user with task-log read permission…

  • CVE-2026-43975MedMay 6, 2026
    risk 0.35cvss 6.5epss 0.01

    FolderUploadsFileManager in Apache Wicket does not validate or sanitize the uploadFieldId parameter or the clientFileName before constructing file paths, allowing an unauthenticated attacker to write arbitrary files outside the intended upload directory or read files from…

  • CVE-2026-33523MedMay 4, 2026
    risk 0.35cvss 6.5epss 0.00

    HTTP response splitting vulnerability in multiple Apache HTTP Server modules with untrusted or compromised backend servers. This issue affects Apache HTTP Server: from through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue.

  • CVE-2026-41607MedApr 28, 2026
    risk 0.35cvss 6.5epss 0.01

    Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

  • CVE-2026-41081MedApr 27, 2026
    risk 0.35cvss 6.5epss 0.00

    Improper Handling of TLS Client Authentication Failure Leading to Anonymous Principal Assignment in Apache Storm Versions Affected: up to 2.8.7 Description: When TLS transport is enabled in Apache Storm without requiring client certificate authentication (the default…

  • CVE-2026-25219MedApr 15, 2026
    risk 0.35cvss 6.5epss 0.01

    The `access_key` and `connection_string` connection properties were not marked as sensitive names in secrets masker. This means that user with read permission could see the values in Connection UI, as well as when Connection was accidentaly logged to logs, those values could be…

  • CVE-2026-34500MedApr 9, 2026
    risk 0.35cvss 6.5epss 0.00

    CLIENT_CERT authentication does not fail as expected for some scenarios when soft fail is disabled and FFM is used in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M14 through 11.0.20, from 10.1.22 through 10.1.53, from 9.0.92 through 9.0.116. Users are…

  • CVE-2026-34538MedApr 9, 2026
    risk 0.35cvss 6.5epss 0.01

    Apache Airflow versions 3.0.0 through 3.1.8 DagRun wait endpoint returns XCom result values even to users who only have DAG Run read permissions, such as the Viewer role.This behavior conflicts with the FAB RBAC model, which treats XCom as a separate protected resource, and with…

  • CVE-2025-66168MedMar 4, 2026
    risk 0.35cvss 5.4epss 0.01

    WARNING: Users of 6.x should upgrade to 6.2.4 or later as the fix was missed in previous 6.x releases. See the  following for more details: https://activemq.apache.org/security-advisories.data/CVE-2026-40046-announcement.txt https://www.cve.org/CVERecord?id=CVE-2026-40046 …

  • CVE-2017-5658MedOct 4, 2018
    risk 0.35cvss 5.3epss 0.02

    The statistics generator in Apache Pony Mail 0.7 to 0.9 was found to be returning timestamp data without proper authorization checks. This could lead to derived information disclosure on private lists about the timing of specific email subjects or text bodies, though without…

  • CVE-2017-15705MedSep 17, 2018
    risk 0.35cvss 5.3epss 0.08

    A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorrectly leading to scan timeouts. In Apache SpamAssassin, using HTML::Parser, we…

  • CVE-2018-8003MedMay 3, 2018
    risk 0.35cvss 5.3epss 0.04

    Apache Ambari, versions 1.4.0 to 2.6.1, is susceptible to a directory traversal attack allowing an unauthenticated user to craft an HTTP request which provides read-only access to any file on the filesystem of the host the Ambari Server runs on that is accessible by the user the…

  • CVE-2018-1283MedMar 26, 2018
    risk 0.35cvss 5.3epss 0.10

    In Apache httpd 2.4.0 to 2.4.29, when mod_session is configured to forward its session data to CGI applications (SessionEnv on, not the default), a remote user may influence their content by using a "Session" header. This comes from the "HTTP_SESSION" variable name used by…

  • CVE-2017-12630MedDec 18, 2017
    risk 0.35cvss 5.4epss 0.01

    In Apache Drill 1.11.0 and earlier when submitting form from Query page users are able to pass arbitrary script or HTML which will take effect on Profile page afterwards. Example: after submitting special script that returns cookie information from Query page, malicious user may…

  • CVE-2009-1197MedOct 30, 2017
    risk 0.35cvss 5.3epss 0.04

    Apache jUDDI before 2.0 allows attackers to spoof entries in log files via vectors related to error logging of keys from uddiget.jsp.

  • CVE-2015-1835MedOct 27, 2017
    risk 0.35cvss 5.3epss 0.06

    Apache Cordova Android before 3.7.2 and 4.x before 4.0.2, when an application does not set explicit values in config.xml, allows remote attackers to modify undefined secondary configuration variables (preferences) via a crafted intent: URL.

  • CVE-2016-8748MedOct 19, 2017
    risk 0.35cvss 5.4epss 0.02

    In Apache NiFi before 1.0.1 and 1.1.x before 1.1.1, there is a cross-site scripting vulnerability in connection details dialog when accessed by an authorized user. The user supplied text was not being properly handled when added to the DOM.

  • CVE-2014-0043MedOct 3, 2017
    risk 0.35cvss 5.3epss 0.03

    In Apache Wicket 1.5.10 or 6.13.0, by issuing requests to special urls handled by Wicket, it is possible to check for the existence of particular classes in the classpath and thus check whether a third party library with a known security vulnerability is in use.

  • CVE-2017-3165MedSep 13, 2017
    risk 0.35cvss 5.4epss 0.02

    In Apache Brooklyn before 0.10.0, the REST server is vulnerable to cross-site scripting where one authenticated user can cause scripts to run in the browser of another user authorized to access the first user's resources. This is due to improper escaping of server-side content.…

  • CVE-2017-7685MedJul 17, 2017
    risk 0.35cvss 5.3epss 0.03

    Apache OpenMeetings 1.0.0 responds to the following insecure HTTP methods: PUT, DELETE, HEAD, and PATCH.

  • CVE-2016-1566MedFeb 2, 2017
    risk 0.35cvss 5.4epss 0.02

    Cross-site scripting (XSS) vulnerability in the file browser in Guacamole 0.9.8 and 0.9.9, when file transfer is enabled to a location shared by multiple users, allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename. NOTE: this…

  • CVE-2015-3271MedDec 15, 2016
    risk 0.35cvss 5.3epss 0.07

    Apache Tika server (aka tika-server) in Apache Tika 1.9 might allow remote attackers to read arbitrary files via the HTTP fileUrl header.

  • CVE-2016-3093MedJun 7, 2016
    risk 0.35cvss 5.3epss 0.11

    Apache Struts 2.0.0 through 2.3.24.1 does not properly cache method references when used with OGNL before 3.0.12, which allows remote attackers to cause a denial of service (block access to a web site) via unspecified vectors.

  • CVE-2015-5207MedMay 9, 2016
    risk 0.35cvss 5.3epss 0.03

    Apache Cordova iOS before 4.0.0 might allow attackers to bypass a URL whitelist protection mechanism in an app and load arbitrary resources by leveraging unspecified methods.

  • CVE-2016-0763MedFeb 25, 2016
    risk 0.35cvss 6.3epss 0.11

    The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLinkFactory.setGlobalContext callers are authorized, which allows remote…

  • CVE-2026-50629MedJun 12, 2026
    risk 0.34cvss 5.3epss 0.00

    The 'clientId' parameter from incoming HTTP requests is directly concatenated into OAuth2 server log warning messages without sanitizing control characters. This allows an attacker to inject arbitrary content, including fake log entries, into the server's log files. Users are…

  • CVE-2026-44618MedMay 22, 2026
    risk 0.34cvss 5.3epss 0.00

    Insecure XML parser configuration in Apache CXF's WS-Transfer module may allow attackers to perform XXE attacks. Users are recommended to upgrade to versions 4.2.1, 4.1.6 or 3.6.11, which fix this issue.

  • CVE-2026-31388MedMay 19, 2026
    risk 0.34cvss 5.3epss 0.00

    Improper Access Control vulnerability in Apache OFBiz in multi-tenant deployments. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue.

  • CVE-2026-31387MedMay 19, 2026
    risk 0.34cvss 5.3epss 0.01

    Improper Authentication vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue.

  • CVE-2025-62233MedApr 24, 2026
    risk 0.34cvss 6.3epss 0.01

    Deserialization of Untrusted Data vulnerability in Apache DolphinScheduler RPC module. This issue affects Apache DolphinScheduler:  Version >= 3.2.0 and < 3.3.1. Attackers who can access the Master or Worker nodes can compromise the system by creating a StandardRpcRequest,…

  • CVE-2024-34580MedJun 26, 2024
    risk 0.34cvss 5.3epss 0.00

    Apache XML Security for C++ through 2.0.4 implements the XML Signature Syntax and Processing (XMLDsig) specification without protection against an SSRF payload in a KeyInfo element. NOTE: the project disputes this CVE Record on the grounds that any vulnerabilities are the result…

  • CVE-2016-4003MedApr 12, 2016
    risk 0.34cvss 6.1epss 0.12

    Cross-site scripting (XSS) vulnerability in the URLDecoder function in JRE before 1.8, as used in Apache Struts 2.x before 2.3.28, when using a single byte page encoding, allows remote attackers to inject arbitrary web script or HTML via multi-byte characters in a url-encoded…

  • CVE-2010-5312MedNov 24, 2014
    risk 0.34cvss 6.1epss 0.18

    Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option.

  • CVE-2026-25699MedJun 9, 2026
    risk 0.33cvss 6.1epss 0.00

    Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. Timeline-related APIs lacked proper authorization checks, allowing regular authenticated users to access deleted, private, or…

  • CVE-2026-25688MedJun 9, 2026
    risk 0.33cvss 6.1epss 0.00

    Improper Neutralization of Alternate XSS Syntax vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. AI-generated response content was rendered in the browser without proper sanitization, allowing malicious scripts to be executed when the content…

  • CVE-2026-29170MedJun 8, 2026
    risk 0.33cvss 6.1epss 0.01

    A cross-site scripting vulnerability exists in mod_proxy_ftp's HTML directory list generation in Apache HTTP Server 2.4.67 and earlier when listing FTP directory contents either via forward or reverse proxy configuration. Users are recommended to upgrade to version 2.4.68,…

  • CVE-2026-45249MedMay 25, 2026
    risk 0.33cvss 6.1epss 0.01

    A cross-site scripting (XSS) vulnerability exists in Apache ECharts in the Lines series tooltip rendering logic. This issue affects Apache ECharts: from before 6.1.0. In versions prior to 6.1.0, if both Lines series and tooltip are used, and no user-specified…

  • CVE-2026-25854MedApr 9, 2026
    risk 0.33cvss 6.1epss 0.01

    Occasional URL redirection to untrusted Site ('Open Redirect') vulnerability in Apache Tomcat via the LoadBalancerDrainingValve. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.18, from 10.1.0-M1 through 10.1.52, from 9.0.0.M23 through 9.0.115, from 8.5.30 through…

  • CVE-2025-54057MedNov 27, 2025
    risk 0.33cvss 6.1epss 0.01

    Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Apache SkyWalking. This issue affects Apache SkyWalking: <= 10.2.0. Users are recommended to upgrade to version 10.3.0, which fixes the issue.

  • CVE-2017-12614MedAug 6, 2018
    risk 0.33cvss 6.1epss 0.02

    It was noticed an XSS in certain 404 pages that could be exploited to perform an XSS attack. Chrome will detect this as a reflected XSS attempt and prevent the page from loading. Firefox and other browsers don't, and are vulnerable to this attack. Mitigation: The fix for this is…

  • CVE-2012-3536MedFeb 27, 2018
    risk 0.33cvss 6.1epss 0.02

    Two XSS vulnerabilities were fixed in message list and view in the Hupa Webmail application from the Apache James project. An attacker could send a carefully crafted email to a user of Hupa which would trigger a XSS when the email was opened or when a list of messages were…

  • CVE-2016-6810MedJan 10, 2018
    risk 0.33cvss 6.1epss 0.06

    In Apache ActiveMQ 5.x before 5.14.2, an instance of a cross-site scripting vulnerability was identified to be present in the web based administration console. The root cause of this issue is improper user data output validation.

  • CVE-2017-17837MedJan 4, 2018
    risk 0.33cvss 6.1epss 0.04

    The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters (by default), so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1.

  • CVE-2016-6812MedAug 10, 2017
    risk 0.33cvss 6.1epss 0.09

    The HTTP transport module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 uses FormattedServiceListWriter to provide an HTML page which lists the names and absolute URL addresses of the available service endpoints. The module calculates the base URL using the current…

  • CVE-2016-5394MedJul 19, 2017
    risk 0.33cvss 6.1epss 0.03

    In the XSS Protection API module before 1.0.12 in Apache Sling, the encoding done by the XSSAPI.encodeForJSString() method is not restrictive enough and for some input patterns allows script tags to pass through unencoded, leading to potential XSS vulnerabilities.

  • CVE-2016-2162MedApr 12, 2016
    risk 0.33cvss 6.1epss 0.09

    Apache Struts 2.x before 2.3.25 does not sanitize text in the Locale object constructed by I18NInterceptor, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors involving language display.

Page 13 of 51