CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

419 matches found

RedhatCVE•added 2026/01/09 12:40 p.m.•8 views

CVE-2023-43667

Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.8.0, the attacker can create misleading or false log records, making it harder to audit and trace malicious...

7.5CVSS6.8AI score0.01979EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:39 p.m.•1 views

CVE-2023-43668

Authorization Bypass Through User-Controlled Key vulnerability in Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.8.0, some sensitive params checks will be bypassed, like "autoDeserizalize","allowLoadLocalInfile".... . Users are advised to upgrade to Apache InLong's 1.9.0 or...

9.8CVSS7AI score0.00056EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:34 p.m.•1 views

CVE-2023-31062

Improper Privilege Management Vulnerabilities in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.2.0 through 1.6.0. When the attacker has access to a valid but unprivileged account, the exploit can be executed using Burp Suite by sending a login request and...

9.8CVSS6.9AI score0.00254EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:33 p.m.•3 views

CVE-2023-31101

Insecure Default Initialization of Resource Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.6.0. Users registered in InLong who joined later can see deleted users' data. Users are advised to upgrade to Apache InLong's 1.7.0 or...

6.5CVSS6.9AI score0.00525EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:33 p.m.•1 views

CVE-2023-31064

Files or Directories Accessible to External Parties vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.2.0 through 1.6.0. the user in InLong could cancel an application that doesn't belongs to it. Users are advised to upgrade to Apache InLong's 1.7....

7.5CVSS6.9AI score0.00228EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:33 p.m.•7 views

CVE-2023-31065

Insufficient Session Expiration vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.6.0. An old session can be used by an attacker even after the user has been deleted or the password has been changed. Users are advised to upgrade to...

9.1CVSS6.9AI score0.00257EPSS

Exploits0References1