Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2023/09/18 6:25 a.m.71 views

CVE-2023-41081

A vulnerability was found in Apache Tomcat Connectors modjk. Affected versions of this package are vulnerable to information exposure in the modjk component. This flaw allows an attacker to exploit the implicit mapping functionality, resulting in the unintended exposure of the status worker and...

7.5CVSS7.2AI score0.01257EPSS
Exploits0References4
Prion
Prion
added 2017/01/06 10:59 p.m.22 views

Design/Logic Flaw

An issue was discovered in Pivotal Spring Security before 3.2.10, 4.1.x before 4.1.4, and 4.2.x before 4.2.1. Spring Security does not consider URL path parameters when processing security constraints. By adding a URL path parameter with an encoded "/" to a request, an attacker may be able to...

5CVSS6.6AI score0.01416EPSS
Exploits0References3Affected Software2
OpenVAS
OpenVAS
added 2013/03/15 12:0 a.m.35 views

CentOS Update for tomcat6 CESA-2013:0623 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS6AI score0.12098EPSS
Exploits3References2
securityvulns
securityvulns
added 2010/11/01 12:0 a.m.99 views

CVE-2010-3700: Spring Security bypass of security constraints

CVE-2010-3700 - Spring Security - Bypassing of security constraints Severity: Important Vendor: SpringSource, a division of VMware Versions affected: Spring Security 3.0.0 to 3.0.3 Spring Security 2.0.0 t0 2.0.5 Acegi Security 1.0.0 to 1.0.7 Description: Spring Security does not consider URL path...

5CVSS6.1AI score0.01673EPSS
Exploits1
Rows per page
Query Builder