Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2026/01/26 12:0 a.m.5 views

PT-2026-4763

UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache Continuum. This issue affects Apache Continuum: all versions. Attackers with access to the installations REST API can use this to invoke arbitrary commands on the...

5.9AI score0.31155EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2025/11/09 12:23 a.m.1 views

SUSE CVE-2025-61581

UNSUPPORTED WHEN ASSIGNED Inefficient Regular Expression Complexity vulnerability in Apache Traffic Control. This issue affects Apache Traffic Control: all versions. People with access to the management interface of the Traffic Router component could specify malicious patterns and cause...

7.5CVSS6.9AI score0.00339EPSS
Exploits0References2
NVD
NVDadded 2025/08/18 8:15 p.m.5 views

CVE-2025-53192

UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Expression/Command Delimiters vulnerability in Apache Commons OGNL. This issue affects Apache Commons OGNL: all versions. When using the API Ognl.getValue​, the OGNL engine parses and evaluates the provided expression with powerful capabilities...

8.8CVSS0.00086EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/08/18 8:9 p.m.6 views

CVE-2025-53192 Apache Commons OGNL: Expression Injection leading to RCE

UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Expression/Command Delimiters vulnerability in Apache Commons OGNL. This issue affects Apache Commons OGNL: all versions. When using the API Ognl.getValue​, the OGNL engine parses and evaluates the provided expression with powerful capabilities...

0.00086EPSS
Exploits0References1
OSV
OSVadded 2025/03/22 3:30 p.m.1 views

GHSA-FMXW-76XQ-CMQQ Apache Oozie Cross-Site Scripting (XSS)

UNSUPPORTED WHEN ASSIGNED Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Oozie. This issue affects Apache Oozie: all versions. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended t...

5.4CVSS7.2AI score0.00394EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/06/12 12:0 a.m.3 views

PT-2024-26941 · Apache · Apache Submarine Server Core

Name of the Vulnerable Software and Affected Versions: Apache Submarine Server Core versions 0.8.0 and later Description: The issue is related to an Incorrect Authorization vulnerability in Apache Submarine Server Core. This vulnerability only affects products that are no longer supported by the...

9.8CVSS7.1AI score0.00378EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2024/02/27 12:0 a.m.2 views

PT-2024-2664 · Apache · Apache Aurora

Name of the Vulnerable Software and Affected Versions: Apache Aurora affected versions not specified Description: The issue is related to the exposure of sensitive information. An endpoint that exposes internals to unauthenticated users can be used as a "padding oracle", allowing an anonymous...

9.3CVSS7.5AI score0.02046EPSS
Exploits0References16
Rows per page
Query Builder