Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

48 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2012-1197

Malware in sbrugna...

4.6CVSS6.1AI score0.00824EPSS
Exploits1References23
Packet Storm
Packet Stormadded 2021/06/14 12:0 a.m.221 views

Accela Civic Platform 21.1 Insecure Direct Object Reference

Exploit Title: Accela Civic Platform 21.1 - 'contactSeqNumber' Insecure Direct Object References IDOR Software Link: https://www.accela.com/civic-platform/ Version: = 21.1 Author: Abdulazeez Alaseeri Tested on: JBoss server/windows Type: Web App Date: 07/06/2021 CVE: CVE-2021-34369...

6.6AI score0.06771EPSS
Exploits4
Exploit DB
Exploit DBadded 2021/06/14 12:0 a.m.366 views

Accela Civic Platform 21.1 - 'successURL' Cross-Site-Scripting (XSS)

Exploit Title: Accela Civic Platform 21.1 - 'successURL' Cross-Site-Scripting XSS Software Link: https://www.accela.com/civic-platform/ Version: = 21.1 Author: Abdulazeez Alaseeri Tested on: JBoss server/windows Type: Web App Date: 07/06/2021 CVE-2021-34370...

6.1CVSS6.3AI score0.08458EPSS
Exploits4
0day.today
0day.todayadded 2021/06/14 12:0 a.m.51 views

Accela Civic Platform 21.1 - (successURL) Cross-Site-Scripting Vulnerability

Exploit Title: Accela Civic Platform 21.1 - 'successURL' Cross-Site-Scripting XSS Software Link: https://www.accela.com/civic-platform/ Version: = 21.1 Author: Abdulazeez Alaseeri Tested on: JBoss server/windows Type: Web App Date: 07/06/2021 CVE-2021-34370...

6.1CVSS6.3AI score0.08458EPSS
Exploits4
Packet Storm
Packet Stormadded 2021/06/14 12:0 a.m.235 views

Accela Civic Platform 21.1 Cross Site Scripting / Open Redirection

Exploit Title: Accela Civic Platform 21.1 - 'successURL' Cross-Site-Scripting XSS Software Link: https://www.accela.com/civic-platform/ Version: = 21.1 Author: Abdulazeez Alaseeri Tested on: JBoss server/windows Type: Web App Date: 07/06/2021 CVE-2021-34370...

6.3AI score0.08458EPSS
Exploits4
0day.today
0day.todayadded 2021/06/14 12:0 a.m.45 views

Accela Civic Platform 21.1 - (contactSeqNumber) Insecure Direct Object References Vulnerability

Exploit Title: Accela Civic Platform 21.1 - 'contactSeqNumber' Insecure Direct Object References IDOR Software Link: https://www.accela.com/civic-platform/ Version: = 21.1 Author: Abdulazeez Alaseeri Tested on: JBoss server/windows Type: Web App Date: 07/06/2021 CVE: CVE-2021-34369...

6.5CVSS0.06771EPSS
Exploits4
Packet Storm
Packet Stormadded 2021/06/11 12:0 a.m.284 views

Accela Civic Platorm 21.1 Cross Site Scripting

Exploit Title: Accela Civic Platform 21.1 - 'servProvCode' Cross-Site-Scripting XSS Exploit Author: Abdulazeez Alaseeri Software Link: https://www.accela.com/civic-platform/ Version: = 21.1 Tested on: JBoss server/windows Type: Web App Date: 06/07/2021 CVE: CVE-2021-33904...

4.3CVSS0.2AI score0.1084EPSS
Exploits5
0day.today
0day.todayadded 2021/06/11 12:0 a.m.63 views

Cerberus FTP Web Service 11 - (svg) Stored Cross-Site Scripting Vulnerability

Exploit Title: Accela Civic Platform 21.1 - 'servProvCode' Cross-Site-Scripting XSS Exploit Author: Abdulazeez Alaseeri Software Link: https://www.accela.com/civic-platform/ Version: = 21.1 Tested on: JBoss server/windows Type: Web App Date: 06/07/2021 CVE: CVE-2021-33904...

6.1CVSS0.3AI score0.1084EPSS
Exploits5
0day.today
0day.todayadded 2021/06/11 12:0 a.m.33 views

Accela Civic Platform 21.1 - (servProvCode) Cross-Site-Scripting Vulnerability

Exploit Title: Accela Civic Platform 21.1 - 'servProvCode' Cross-Site-Scripting XSS Exploit Author: Abdulazeez Alaseeri Software Link: https://www.accela.com/civic-platform/ Version: = 21.1 Tested on: JBoss server/windows Type: Web App Date: 06/07/2021 CVE: CVE-2021-33904...

6.1CVSS0.5AI score0.1084EPSS
Exploits5
OSV
OSVadded 2020/10/16 2:15 p.m.1 views

CVE-2020-14299

A flaw was found in JBoss EAP, where the authentication configuration is set-up using a legacy SecurityRealm, to delegate to a legacy PicketBox SecurityDomain, and then reloaded to admin-only mode. This flaw allows an attacker to perform a complete authentication bypass by using an arbitrary user...

6.5CVSS6.7AI score0.00205EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2020/07/01 10:55 a.m.113 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.23 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS7AI score0.94469EPSS
Exploits44References11
Qualys Blog
Qualys Blogadded 2019/09/20 6:17 p.m.156 views

Qualys Cloud Platform 8.21.2 New Features

This new release of the Qualys Cloud Platform VM, PC, version 8.21.2, includes Virtual Scanner Appliance support for Alibaba Cloud Compute, scheduling of EC2 scans with no scannable EC2 assets in Asset Tags in Qualys Vulnerability Management, expanded support for instance discovery and auto recor...

0.3AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2019/05/13 5:4 p.m.135 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.22 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...

7.5CVSS7.1AI score0.13337EPSS
Exploits1References12
Veracode
Veracodeadded 2019/05/02 4:46 a.m.36 views

Privilege Escalation

An attack technique against the W3C XML Encryption Standard when block ciphers were used in CBC mode could allow a remote attacker to conduct chosen-ciphertext attacks, leading to the recovery of the entire plain text of a particular cryptogram. CVE-2011-1096 JBoss Web Services leaked side-channe...

5.9CVSS7AI score0.5129EPSS
Exploits7References38Affected Software63
Veracode
Veracodeadded 2019/05/02 4:45 a.m.30 views

Authentication Bypass

JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.1, and includes bug fixes and enhancements. Refer to the 6.1.0 Release Notes for information on the...

5.9CVSS5.8AI score0.09505EPSS
Exploits0References7Affected Software141
RedHat Linux
RedHat Linuxadded 2017/12/13 6:26 p.m.1 views

jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation...

7.8CVSS7.3AI score0.00071EPSS
Exploits0References4
OpenVAS
OpenVASadded 2016/07/26 12:0 a.m.165 views

Red Hat JBoss Products RMI Java Deserialization Vulnerability (Nov 2015) - Active Check

Red Hat JBoss products are prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.9AI score0.71461EPSS
Exploits8References4
RedHat Linux
RedHat Linuxadded 2015/12/01 8:25 p.m.48 views

Critical: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 5.2 security update

Updated packages for the Apache commons-collections library for Red Hat JBoss Enterprise Application Platform 5.2, which fix one security issue, are now available for Red Hat Enterprise Linux 4, 5, and 6. Red Hat Product Security has rated this update as having Critical security impact. A Common...

10CVSS6.7AI score0.71461EPSS
Exploits8References3
RedHat Linux
RedHat Linuxadded 2015/11/24 6:3 p.m.44 views

Critical: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform security update

Updated packages for the Apache commons-collections library, which fix one security issue, are now available for Red Hat JBoss Enterprise Application Platform 5.2, 5.1.2, and 4.3.10. Red Hat Product Security has rated this update as having Critical security impact. A Common Vulnerability Scoring...

10CVSS6.7AI score0.71461EPSS
Exploits8References6
RedHat Linux
RedHat Linuxadded 2015/11/20 6:31 p.m.43 views

Critical: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform security update

Updated packages for the Apache commons-collections library, which fix one security issue, are now available for Red Hat JBoss Enterprise Application Platform 6.1, 6.2, 6.3, and 6.4. Red Hat Product Security has rated this update as having Critical security impact. A Common Vulnerability Scoring...

10CVSS6.7AI score0.71461EPSS
Exploits8References7
Rows per page
Query Builder