CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed by Sun under the Java Community Process. Tomcat is developed in an open and participator...

9.8CVSS9.2AI score0.66365EPSS

Exploits18References6

RedhatCVE•added 2025/05/22 9:3 p.m.•5 views

CVE-2021-24711

The delreistereddomains AJAX action of the Software License Manager WordPress plugin before 4.5.1 does not have any CSRF checks, and is vulnerable to a CSRF attack...

8.8CVSS6.8AI score0.00667EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 8:31 p.m.•3 views

CVE-2021-24560

The Software License Manager WordPress plugin before 4.4.8 does not sanitise or escape the editrecord parameter before outputting it back in the page in the admin dashboard, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS6.2AI score0.00702EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:8 p.m.•7 views

CVE-2021-20782

Cross-site request forgery CSRF vulnerability in Software License Manager versions prior to 4.4.6 allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.8CVSS7.4AI score0.00871EPSS

Exploits0References1

Fedora•added 2024/12/25 1:50 a.m.•17 views

[SECURITY] Fedora 41 Update: tomcat-9.0.98-1.fc41

6.1CVSS6.3AI score0.01676EPSS

Exploits1

Fedora•added 2024/12/25 1:38 a.m.•16 views

[SECURITY] Fedora 40 Update: tomcat-9.0.98-1.fc40

6.1CVSS6.3AI score0.01676EPSS

Exploits1

OSV•added 2024/11/08 3:6 p.m.•4 views

CGA-CJ8G-9QWP-28PQ

Bulletin has no description...

3.1CVSS4.6AI score0.00521EPSS

Exploits0

OSV•added 2024/11/07 1:6 p.m.•13 views

CGA-C4J7-V7C2-7MQ3

Bulletin has no description...

6.5CVSS6.2AI score0.01009EPSS

Exploits0

RedHat Linux•added 2024/10/28 1:18 a.m.•28 views

Important: Red Hat Security Advisory: pki-servlet-engine security update

An update for pki-servlet-engine is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.6CVSS7.1AI score0.01702EPSS

Exploits0References2

OSV•added 2024/10/08 12:22 p.m.•4 views

CGA-M7HX-2WJ7-GCHV

Bulletin has no description...

7.2AI score

Exploits0

OSV•added 2024/09/25 5:32 a.m.•8 views

CGA-Q9VM-M8Q9-W6QR

Bulletin has no description...

4.3CVSS5.6AI score0.00832EPSS

Exploits0