CVE-2026-56122

Winstone Servlet Engine through 0.9.10 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by sending HTTP GET requests with dot-dot-slash sequences that are not sanitized when serving static files from the configured webroot. Attackers can traver...

CVE-2026-56122

Winstone Servlet Engine up to version 0.9.10 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by sending HTTP GET requests with dot-dot-slash sequences not sanitized when serving static files from the configured webroot. Attackers can traverse ...

EUVD-2026-39397

Winstone Servlet Engine through 0.9.10 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by sending HTTP GET requests with dot-dot-slash sequences that are not sanitized when serving static files from the configured webroot. Attackers can traver...

CLSA-2026-1775646020 Update of pki-servlet-engine

Bump release...

CLSA-2026-1769701085 pki-servlet-engine: Fix of CVE-2025-31651

CVE-2025-31651: fix improper neutralization of escape, meta or control sequences to avoid bypassing rewrite rules...

CLSA-2026-1768989206 pki-servlet-engine: Fix of CVE-2025-55752

CVE-2025-55752: fix improper normalization in RewriteValve to prevent path traversal attacks...

RHSA-2026:0293 Red Hat Security Advisory: pki-servlet-engine security update

Bulletin has no description...

RHSA-2026:0292 Red Hat Security Advisory: pki-servlet-engine security update

Bulletin has no description...

MiracleLinux 9 : pki-servlet-engine-9.0.50-1.el9_2.2 (AXSA:2025-10718:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10718:01 advisory. tomcat: RCE due to TOCTOU issue in JSP compilation CVE-2024-50379 Tenable has extracted the preceding description block directly from the MiracleLinux...

Important: Red Hat Security Advisory: pki-servlet-engine security update

An update for pki-servlet-engine is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Important: Red Hat Security Advisory: pki-servlet-engine security update

An update for pki-servlet-engine is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

EUVD-2006-6620

Malware in sbrugna...

EUVD-2009-2084

Malware in sbrugna...

EUVD-2007-1939

Malware in sbrugna...

EUVD-2008-4094

Malware in sbrugna...

EUVD-2011-0341

Malware in sbrugna...

EUVD-2009-3089

Malware in sbrugna...

CVE-2023-29517

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. The office document viewer macro was allowing anyone to see any file content from the hosting server, provided that the office server was connected and depending on the permissions of the user...

RHSA-2025:1920 Red Hat Security Advisory: pki-servlet-engine security update

Bulletin has no description...

RHSA-2024:8528 Red Hat Security Advisory: pki-servlet-engine security update

Bulletin has no description...