Lucene search
ApacheCVELIST:CVE-2021-31164HistoryMay 04, 2021 - 6:55 a.m.
CVE-2021-31164 Apache Unomi log injection
2021-05-0406:55:12
CWE-93
apache
www.cve.org
3
apache unomi
log injection
crlf
escaping.
EPSS
0.001
Percentile
33.4%
Apache Unomi prior to version 1.5.5 allows CRLF log injection because of the lack of escaping in the log statements.
CNA Affected
[
{
"product": "Apache Unomi",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "1.5.5",
"status": "affected",
"version": "Apache Unomi",
"versionType": "custom"
}
]
}
]References
Related
osv
osv
Command injection in Apache Unomi
2021-06-16 17:17:24
CVE-2021-31164
2021-05-04 07:15:07
prion
prion
Crlf injection
2021-05-04 07:15:00
nvd
nvd
CVE-2021-31164
2021-05-04 07:15:07
github
github
Command injection in Apache Unomi
2021-06-16 17:17:24
cve
cve
CVE-2021-31164
2021-05-04 07:15:07