CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed by Sun under the Java Community Process. Tomcat is developed in an open and participator...

9.8CVSS9.2AI score0.84776EPSS

Exploits17References6

RedhatCVE•added 2025/05/22 9:3 p.m.•3 views

CVE-2021-24711

The delreistereddomains AJAX action of the Software License Manager WordPress plugin before 4.5.1 does not have any CSRF checks, and is vulnerable to a CSRF attack...

8.8CVSS6.8AI score0.00109EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 8:31 p.m.•2 views

CVE-2021-24560

The Software License Manager WordPress plugin before 4.4.8 does not sanitise or escape the editrecord parameter before outputting it back in the page in the admin dashboard, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS6.2AI score0.0021EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:8 p.m.•6 views

CVE-2021-20782

Cross-site request forgery CSRF vulnerability in Software License Manager versions prior to 4.4.6 allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.8CVSS7.4AI score0.00151EPSS

Exploits0References1

Fedora•added 2024/12/25 1:50 a.m.•15 views

[SECURITY] Fedora 41 Update: tomcat-9.0.98-1.fc41

6.1CVSS6.3AI score0.15467EPSS

Exploits1

Fedora•added 2024/12/25 1:38 a.m.•13 views

[SECURITY] Fedora 40 Update: tomcat-9.0.98-1.fc40

6.1CVSS6.3AI score0.15467EPSS

Exploits1

OSV•added 2024/11/08 3:6 p.m.•4 views

CGA-CJ8G-9QWP-28PQ

Bulletin has no description...

3.1CVSS4.6AI score0.0006EPSS

Exploits0

OSV•added 2024/11/07 1:6 p.m.•12 views

CGA-C4J7-V7C2-7MQ3

Bulletin has no description...

6.5CVSS6.2AI score0.01368EPSS

Exploits0

RedHat Linux•added 2024/10/28 1:18 a.m.•19 views

Important: Red Hat Security Advisory: pki-servlet-engine security update

An update for pki-servlet-engine is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.6CVSS7.1AI score0.00413EPSS

Exploits0References2

OSV•added 2024/10/08 12:22 p.m.•3 views

CGA-M7HX-2WJ7-GCHV

Bulletin has no description...

7.2AI score

Exploits0

OSV•added 2024/09/25 5:32 a.m.•8 views

CGA-Q9VM-M8Q9-W6QR

Bulletin has no description...

4.3CVSS5.6AI score0.00081EPSS

Exploits0