Lucene search
K

71 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-6346

Malware in sbrugna...

8.8CVSS8.8AI score0.00625EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-11817

Malware in sbrugna...

6.1CVSS5.9AI score0.01295EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-16487

Malware in sbrugna...

6.1CVSS6.3AI score0.01818EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2010-3836

Malware in sbrugna...

6.1CVSS6.3AI score0.00855EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-9455

Malware in sbrugna...

5.4CVSS5.6AI score0.01259EPSS
Exploits0References7
F5 Networks
F5 Networks
added 2023/02/21 5:33 p.m.92 views

K63443590: Apache Commons FileUpload vulnerability CVE-2013-2186

Security Advisory Description The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized...

7.5CVSS7.5AI score0.12768EPSS
Exploits0
OSV
OSV
added 2022/05/14 3:52 a.m.43 views

GHSA-QX6H-9567-5FQW Arbitrary file write in Apache Commons Fileupload

The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance...

7.5CVSS8.3AI score0.12768EPSS
Exploits0References15
Github Security Blog
Github Security Blog
added 2022/05/14 3:52 a.m.49 views

Arbitrary file write in Apache Commons Fileupload

The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance...

7.5CVSS5AI score0.12768EPSS
Exploits0References15Affected Software1
UbuntuCve
UbuntuCve
added 2020/01/23 7:15 p.m.31 views

CVE-2012-5626

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation...

7.5CVSS7.1AI score0.00909EPSS
Exploits0References2
CVE
CVE
added 2020/01/23 6:10 p.m.76 views

CVE-2012-5626

The CVE-2012-5626 entry refers to an EJB method in Red Hat products (BRMS 5; JBoss EAP 5; JBoss Operations Network 3.1; JBoss Portal 4/5; JBoss SOA Platform 4.2–5; JBoss Enterprise Web Server 1) that ignores roles specified via the @RunAs annotation. The underlying issue is a role-handling flaw i...

7.5CVSS7.5AI score0.00909EPSS
Exploits0References2Affected Software6
Cvelist
Cvelist
added 2020/01/23 6:10 p.m.28 views

CVE-2012-5626

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation...

7.6AI score0.00909EPSS
Exploits0References2
NVD
NVD
added 2019/11/12 11:15 p.m.22 views

CVE-2010-3857

JBoss BRMS before 5.1.0 has a XSS vulnerability via asset=UUID parameter...

6.1CVSS6.1AI score0.00855EPSS
Exploits0References3
Prion
Prion
added 2019/11/12 11:15 p.m.18 views

Cross site scripting

JBoss BRMS before 5.1.0 has a XSS vulnerability via asset=UUID parameter...

4.3CVSS6.3AI score0.00855EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2019/11/12 10:3 p.m.70 views

CVE-2010-3857

JBoss BRMS before 5.1.0 has an XSS vulnerability via the asset=UUID parameter. The issue stems from a lack of proper validation of client-side data by the web application, enabling an attacker to execute client-side code. Affected product: Red Hat JBoss BRMS prior to 5.1.0. Impact is XSS; CVSS sc...

6.1CVSS6AI score0.00855EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2019/11/12 10:3 p.m.21 views

CVE-2010-3857

JBoss BRMS before 5.1.0 has a XSS vulnerability via asset=UUID parameter...

6AI score0.00855EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2019/07/15 7:18 p.m.129 views

Important: Red Hat Security Advisory: Red Hat JBoss BRMS 6.4.12 security update

An update is now available for Red Hat JBoss BRMS. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

9.8CVSS7.4AI score0.49727EPSS
Exploits3References11
RedHat Linux
RedHat Linux
added 2018/08/15 7:41 a.m.48 views

Important: Red Hat Security Advisory: Red Hat JBoss BRMS 6.4.11 security update

An update is now available for Red Hat JBoss BRMS. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

9.8CVSS7.3AI score0.15087EPSS
Exploits0References4
NVD
NVD
added 2018/08/01 2:29 p.m.34 views

CVE-2016-8608

JBoss BRMS 6 and BPM Suite 6 are vulnerable to a stored XSS via business process editor. The flaw is due to an incomplete fix for CVE-2016-5398. Remote, authenticated attackers that have privileges to create business processes can store scripts in them, which are not properly sanitized before...

5.4CVSS5.2AI score0.01259EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/08/01 2:0 p.m.34 views

CVE-2016-8608

JBoss BRMS 6 and BPM Suite 6 are vulnerable to a stored XSS via business process editor. The flaw is due to an incomplete fix for CVE-2016-5398. Remote, authenticated attackers that have privileges to create business processes can store scripts in them, which are not properly sanitized before...

5.4CVSS5.2AI score0.01259EPSS
Exploits0References4
CVE
CVE
added 2018/08/01 2:0 p.m.67 views

CVE-2016-8608

CVE-2016-8608 applies to Red Hat JBoss BRMS 6 and BPM Suite 6. The flaw is a stored XSS in the business process editor caused by an incomplete fix for CVE-2016-5398. Remote, authenticated users with privileges to create business processes can store scripts that are not properly sanitized before d...

5.4CVSS5.4AI score0.01259EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder