61051 matches found
Apache Tomcat: Request header mix-up between HTTP/2 streams
...
Apache Kylin 安全漏洞
Apache Kylin is an open source distributed analytics engine designed to provide SQL interfaces as well as support for multidimensional analytics for Hadoop and Alluxio for very large datasets. An authentication bypass vulnerability exists in the Apache Kylin /kylin/api/user/updateuser interface,...
Apache Kylin 安全漏洞
Apache Kylin is the United States Apache Apache Foundation of an open source distributed analytical data warehouse . The product mainly provides Hadoop/Spark on top of the SQL query interface and multidimensional analysis OLAP and other functions. An information disclosure vulnerability exists in...
Apache Kylin 安全漏洞
Apache Kylin is the United States Apache Apache Foundation of an open source distributed analytical data warehouse . The product mainly provides Hadoop/Spark on top of the SQL query interface and multidimensional analysis OLAP and other functions. A server-side request forgery vulnerability exist...
PT-2025-40654
CVE-2025-61853 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2025-61853 Published : Oct. 2, 2025, 3:15 a.m. | 1 hour, 58 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...
PT-2025-40655
CVE-2025-61854 - Apache HTTP Server Unvalidated User Input CVE ID : CVE-2025-61854 Published : Oct. 2, 2025, 3:15 a.m. | 1 hour, 58 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...
PT-2025-40650
CVE-2025-61849 - Apache HTTP Server Information Disclosure CVE ID : CVE-2025-61849 Published : Oct. 2, 2025, 3:15 a.m. | 1 hour, 58 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...
PT-2025-40651
CVE-2025-61850 - Apache Struts Command Execution CVE ID : CVE-2025-61850 Published : Oct. 2, 2025, 3:15 a.m. | 1 hour, 58 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...
PT-2025-40652
CVE-2025-61851 - Apache HTTP Server SQL Injection CVE ID : CVE-2025-61851 Published : Oct. 2, 2025, 3:15 a.m. | 1 hour, 58 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...
PT-2025-40656
CVE-2025-61855 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2025-61855 Published : Oct. 2, 2025, 3:15 a.m. | 1 hour, 58 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...
Security Bulletin: due to the use of Apache Commons IO, IBM Transformation Extender Advanced is vulnerable to excessive CPU consumption
Summary Apache Commons IO is used by IBM Transformation Extender Advanced also known as IBM Standards Processing Engine as part of .... CVE-2024-47554 Vulnerability Details CVEID:CVE-2024-47554 DESCRIPTION: Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The...
LFI-SQLI-SSRF
🕵️♀️ Labo Web Vulnérable – Étape 1 : LFI Local File Inclusio...
PT-2025-40445
CVE-2025-61718 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2025-61718 Published : Oct. 1, 2025, 3:15 a.m. | 2 hours, 24 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...
Apache Fory 安全漏洞
Apache Fory is a JIT-based dynamic compilation and zero-copy technology based on multi- language serialization framework , designed for distributed systems and high-performance computing scenarios . Apache Fory suffers from a deserialization vulnerability that stems from unsafe deserialization of...
PT-2025-40310
Name of the Vulnerable Software and Affected Versions Apache Kylin versions 4.0.0 through 5.0.2 Description An authentication bypass issue exists in Apache Kylin. This allows bypassing normal authentication mechanisms through an alternate path or channel. Recommendations Upgrade to version 5.0.3 ...
PT-2025-40312
Name of the Vulnerable Software and Affected Versions Apache Kylin versions 4.0.0 through 5.0.2 Description A Server-Side Request Forgery SSRF issue exists in Apache Kylin. The impact is limited if Kylin's system and project admin access is well protected. Recommendations Upgrade to version 5.0.3...
PT-2025-40449
CVE-2025-61722 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2025-61722 Published : Oct. 1, 2025, 3:15 a.m. | 2 hours, 24 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...
PT-2025-40442
CVE-2025-61715 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2025-61715 Published : Oct. 1, 2025, 3:15 a.m. | 2 hours, 24 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...
PT-2025-40444
CVE-2025-61717 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2025-61717 Published : Oct. 1, 2025, 3:15 a.m. | 2 hours, 24 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...
PT-2025-40441
CVE-2025-61714 - Apache HTTP Server Unvalidated User Input CVE ID : CVE-2025-61714 Published : Oct. 1, 2025, 3:15 a.m. | 2 hours, 24 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...