CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2025/10/03 7:56 p.m.•11 views

RLSA-2025:7497 Moderate: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat: Authentication bypass when using Jakarta Authentication API CVE-2024-52316 tomcat: Apache Tomcat: DoS in examples web application CVE-2024-54677 tomcat: Potentia...

8.6CVSS7.1AI score0.9413EPSS

Exploits45References4

Vulnrichment•added 2025/06/16 11:0 a.m.•4 views

CVE-2025-47869 Apache NuttX RTOS: examples/xmlrpc: Fix calls buffers size.

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability was discovered in Apache NuttX RTOS apps/exapmles/xmlrpc application. In this example application device stats structure that stored remotely provided parameters had hardcoded buffer size which could lead to...

7.3AI score0.00475EPSS

Exploits0References2

Packet Storm News•added 2025/06/05 12:0 a.m.•3 views

A Symmetric LWE-Based Multi-Recipient Cryptosystem

This article describes a post-quantum multirecipient symmetric cryptosystem whose security is based on the hardness of the LWE problem. In this scheme a single sender encrypts multiple messages for multiple recipients generating a single ciphertext which is broadcast to the recipients. Each...

6.7AI score

Exploits0

Github Security Blog•added 2022/05/01 6:26 p.m.•26 views

Apache Tomcat Example Application CSRF and XSS Vulnerabilities

Cross-site request forgery CSRF vulnerability in cal2.jsp in the calendar examples application in Apache Tomcat 4.1.31 allows remote attackers to add events as arbitrary users via the time and description parameters...

4.3CVSS7.1AI score0.00778EPSS

Exploits0References5Affected Software1

OSV•added 2022/05/01 6:26 p.m.•20 views

GHSA-G77G-VJJM-X83J Apache Tomcat Example Application CSRF and XSS Vulnerabilities

4.3CVSS6.8AI score0.00778EPSS

Exploits0References4

OpenVAS•added 2016/05/18 12:0 a.m.•37 views

Debian Security Advisory DSA 3582-1 (expat - security update)

Gustavo Grieco discovered that Expat, an XML parsing C library, does not properly handle certain kinds of malformed input documents, resulting in buffer overflows during processing and error reporting. A remote attacker can take advantage of this flaw to cause an application using the Expat libra...

7.5CVSS0.5AI score0.02827EPSS

Exploits3References1

seebug.org•added 2014/07/01 12:0 a.m.•20 views

BEA WebLogic 6/7/8 InteractiveQuery.jsp Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8938/info It has been reported that BEA WebLogic InteractiveQuery.jsp example application is prone to a cross-site scripting vulnerability. The issue is reported to exist due insufficient sanitization of user-supplied dat...

7.1AI score

Exploits0