CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

34 matches found

Reposilite >= 3.3.0, < 3.5.12 - Arbitrary File Read

Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM ecosystem. Reposilite v3.5.10 is affected by an Arbitrary File Read vulnerability via path traversal while serving expanded javadoc files. Reposilite has addressed this issue in version...

8.6CVSS7.3AI score0.74649EPSS

Exploits1References5

VulnCheck KEV•added 2025/10/17 12:0 a.m.•2 views

VulnCheck KEV: CVE-2024-36117

8.6CVSS5.8AI score0.74649EPSS

In wildExploits1References179

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2024-2552

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.05369EPSS

Exploits0References6

RedhatCVE•added 2025/02/05 4:49 a.m.•6 views

CVE-2024-36116

Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM ecosystem. Reposilite provides support for JavaDocs files, which are archives that contain documentation for artifacts. Specifically, JavadocEndpoints.kt controller allows to expand the...

9.8CVSS7.2AI score0.17984EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 4:45 a.m.•6 views

CVE-2024-36115

Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM ecosystem. As a Maven repository manager, Reposilite provides the ability to view the artifacts content in the browser, as well as perform administrative tasks via API. The problem lies i...

7.1CVSS7AI score0.05369EPSS

Exploits0References1

Github Security Blog•added 2024/11/04 11:23 p.m.•9 views

Reposilite vulnerable to path traversal while serving javadoc expanded files (arbitrary file read) (`GHSL-2024-074`)

Summary Reposilite v3.5.10 is affected by an Arbitrary File Read vulnerability via path traversal while serving expanded javadoc files. Details The problem lies in the way how the expanded javadoc files are served. The GET /javadoc/repository//raw/ route uses the path parameter to find the file i...

8.6CVSS6.5AI score0.74649EPSS

Exploits1References5Affected Software1

OSV•added 2024/11/04 11:23 p.m.•12 views

GHSA-82J3-HF72-7X93 Reposilite vulnerable to path traversal while serving javadoc expanded files (arbitrary file read) (`GHSL-2024-074`)

8.8CVSS8.2AI score0.74649EPSS

Exploits1References5

OSV•added 2024/08/05 9:29 p.m.•9 views

GHSA-W7C4-5W4F-JM3G Duplicate Advisory: Reposilite Arbitrary File Read vulnerability

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-82j3-hf72-7x93. This link is maintained to preserve external references. Original description Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM...

8.8CVSS7.9AI score0.74649EPSS

Exploits1References5

Github Security Blog•added 2024/08/05 9:29 p.m.•21 views

Duplicate Advisory: Reposilite Arbitrary File Read vulnerability

8.6CVSS8.6AI score0.74649EPSS

Exploits1References5Affected Software1

OSV•added 2024/08/02 9:13 p.m.•13 views

GHSA-FRVJ-CFQ4-3228 Path traversal in Reposilite javadoc file expansion (arbitrary file creation/overwrite) (`GHSL-2024-073`)

Summary Reposilite v3.5.10 is affected by an Arbitrary File Upload vulnerability via path traversal in expanding of Javadoc archives. Details Reposilite provides support for JavaDocs files, which are archives that contain documentation for artifacts. Specifically, JavadocEndpoints.kt controller...

8.8CVSS7.8AI score0.17984EPSS

Exploits1References4

Github Security Blog•added 2024/08/02 9:13 p.m.•20 views

Path traversal in Reposilite javadoc file expansion (arbitrary file creation/overwrite) (`GHSL-2024-073`)

9.8CVSS7.3AI score0.17984EPSS

Exploits1References4Affected Software1

Github Security Blog•added 2024/08/02 9:12 p.m.•41 views

Reposilite artifacts vulnerable to Stored Cross-site Scripting

Summary Reposilite v3.5.10 is affected by Stored Cross-Site Scripting XSS when displaying artifact's content in the browser. Details As a Maven repository manager, Reposilite provides the ability to view the artifacts content in the browser, as well as perform administrative tasks via API. The...

7.1CVSS6.8AI score0.05369EPSS

Exploits0References6Affected Software1

OSV•added 2024/08/02 9:12 p.m.•20 views

GHSA-9W8W-34VR-65J2 Reposilite artifacts vulnerable to Stored Cross-site Scripting

7.7CVSS6.9AI score0.05369EPSS

Exploits0References6

NVD•added 2024/06/19 6:15 p.m.•17 views

CVE-2024-36117

8.6CVSS0.74649EPSS

Exploits1References3

NVD•added 2024/06/19 6:15 p.m.•24 views

CVE-2024-36115

7.1CVSS0.05369EPSS

Exploits0References4

NVD•added 2024/06/19 6:15 p.m.•24 views

CVE-2024-36116

9.8CVSS0.17984EPSS

Exploits1References3

OSV•added 2024/06/19 5:37 p.m.•7 views

CVE-2024-36117 Path traversal while serving Reposilite javadoc expanded files

8.6CVSS9.2AI score0.74649EPSS

Exploits1References5

Cvelist•added 2024/06/19 5:37 p.m.•21 views

CVE-2024-36117 Path traversal while serving Reposilite javadoc expanded files

8.6CVSS0.74649EPSS

Exploits1References3

Vulnrichment•added 2024/06/19 5:37 p.m.•18 views

CVE-2024-36117 Path traversal while serving Reposilite javadoc expanded files

8.6CVSS6.9AI score0.74649EPSS

Exploits1References3

CVE•added 2024/06/19 5:37 p.m.•138 views

CVE-2024-36117

Affected software: Reposilite v3.5.10 (Reposilite is a Maven repository manager for JVM artifacts).Vulnerability: Arbitrary File Read via path traversal while serving expanded javadoc files.Root cause (as described): The resource path parameter can contain traversal sequences (e.g., ../../) and i...

8.6CVSS8.6AI score0.74649EPSS

In wildExploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by