Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/10/23 3:14 p.m.6 views

CVE-2025-49931

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Crocoblock JetSearch jet-search allows Blind SQL Injection.This issue affects JetSearch: from n/a through = 3.5.10...

9.3CVSS5.9AI score0.00388EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.3 views

PT-2025-43194

Name of the Vulnerable Software and Affected Versions CrocoBlock JetSearch versions through 3.5.10 Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a Reflected Cross-Site Scripting XSS condition. This allows an attacker to...

7.1CVSS5.8AI score0.00228EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.2 views

Apache CXF 资源管理错误漏洞

Apache CXF is an open source Web services framework from the US Apache Apache Foundation. The framework supports a variety of Web services standards, a variety of front-end programming APIs and so on. A resource management error vulnerability exists in Apache CXF versions prior to 3.5.10, 3.6.5,...

7.5CVSS6AI score0.01941EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/06/19 12:0 a.m.2 views

PT-2024-26903 · Unknown · Reposilite

Name of the Vulnerable Software and Affected Versions: Reposilite versions 3.5.10 through 3.5.11 Description: The issue is related to an Arbitrary File Read vulnerability via path traversal while serving expanded javadoc files. This occurs because the GET /javadoc/repository//raw/ route uses the...

8.8CVSS9.4AI score0.03145EPSS
Exploits1References10
Rows per page
Query Builder