CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/05/22 1:26 p.m.•7 views

CVE-2018-21234

Jodd before 5.0.4 performs Deserialization of Untrusted JSON Data when setClassMetadataName is set...

9.8CVSS6.8AI score0.25246EPSS

Exploits0References1

Positive Technologies•added 2022/06/06 12:0 a.m.•1 views

PT-2022-19738 · Jodd Http · Jodd Http

Name of the Vulnerable Software and Affected Versions: Jodd HTTP version 6.0.9 Description: The issue allows attackers to execute Server-Side Request Forgery SSRF via a crafted TCP payload, leveraging multiple CLRF injection vulnerabilities. These vulnerabilities are present in the components...

7.5CVSS8AI score0.00106EPSS

Exploits1References11

CNNVD•added 2022/06/06 12:0 a.m.•1 views

Jodd 注入漏洞

Jodd is a Java-based utility toolset. A security vulnerability exists in Jodd HTTP version v6.0.9, which stems from multiple Carriage Return Line Feed CLRF injection vulnerabilities discovered via the components jodd.http.HttpRequestset and jodd.http.HttpRequestsend. An attacker could exploit thi...

7.5CVSS7.3AI score0.00106EPSS

Exploits1References3