Lucene search
K

70 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : jakarta-taglibs-standard-1.1.1-11.7.0.1.AXS4 (AXSA:2015-477:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2015-477:01 advisory. This package contains Jakarta Taglibs's open-source implementation of the JSP Standard Tag Library JSTL, version 1.1. JSTL is a standard under the Java...

7.5CVSS7AI score0.1326EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-0826

Malware in sbrugna...

7.5CVSS7.2AI score0.1326EPSS
Exploits0References47
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2015-0254

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension i...

7.5CVSS7.6AI score0.1326EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/24 11:46 a.m.157 views

Security Bulletin: IBM® Engineering Requirements Management DOORS/DWA vulnerabilities fixed in 9.7.2.7

Summary cURL libcurl, Apache Xerces2 Java, Apache Jena, Spring Framework, json-smart-v1 and json-smart-v2 , libxml2, Apache Standard Taglibs , Apache ActiveMQ, Apache Commons Codec are identified as vulnerable components with multiple reported vulnerabilities, CVE-2022-35260, CVE-2022-42915,...

9.8CVSS10AI score0.99677EPSS
Exploits130Affected Software1
OSV
OSV
added 2024/09/15 11:27 p.m.16 views

RHSA-2015:1695 Red Hat Security Advisory: jakarta-taglibs-standard security update

Bulletin has no description...

7.6CVSS8.6AI score0.1326EPSS
Exploits0References8
OSV
OSV
added 2024/06/15 12:0 a.m.6 views

OPENSUSE-SU-2024:10219-1 jakarta-taglibs-standard-1.1.1-257.4 on GA media

These are all security issues fixed in the jakarta-taglibs-standard-1.1.1-257.4 package on the GA media of openSUSE Tumbleweed...

7.5CVSS6.5AI score0.1326EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/03/08 12:0 a.m.19 views

Fedora: Security Advisory for tomcat-taglibs-parent (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.2AI score0.02578EPSS
Exploits3References2
Fedora
Fedora
added 2024/03/07 10:33 p.m.26 views

[SECURITY] Fedora 40 Update: tomcat-taglibs-parent-3-24.fc40

Apache Taglibs Parent pom used for building purposes...

8.8CVSS6.9AI score0.02578EPSS
Exploits3
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/04 10:32 a.m.53 views

Security Bulletin: OpenSource Apache Taglibs Vulnerability affects IBM Jazz Reporting Service (CVE-2015-0254)

Summary Apache Standard Taglibs could allow a remote attacker to execute arbitrary code on the system, caused by an XML External Entity Injection XXE error when processing XML data. Vulnerability Details CVEID:CVE-2015-0254 DESCRIPTION: Apache Standard Taglibs could allow a remote attacker to...

7.5CVSS9.5AI score0.1326EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:23 a.m.4 views

SUSE CVE-2015-0254

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

7.5CVSS8.1AI score0.1326EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2022/08/30 4:38 p.m.41 views

Security Bulletin: IBM TRIRIGA discloses CVE-2015-0254

Summary IBM TRIRIGA discloses CVE-2015-0254 Vulnerability Details CVEID:CVE-2015-0254 DESCRIPTION: Apache Standard Taglibs could allow a remote attacker to execute arbitrary code on the system, caused by an XML External Entity Injection XXE error when processing XML data. By sending...

7.5CVSS8.6AI score0.1326EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/22 7:50 p.m.37 views

Security Bulletin: OpenSource Apache Taglibs vulnerability affect IBM Spectrum Control (formerly Tivoli Storage Productivity Center) CVE-2015-0254

Summary OpenSource Apache Taglibs vulnerability affects IBM Spectrum Control and Tivoli Storage Productivity Center. IBM Spectrum Control and Tivoli Storage Productivity Center have addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-0254 DESCRIPTION: Apache Standard Taglibs coul...

7.5CVSS9.1AI score0.1326EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2015-0140)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.3AI score0.1326EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/14 1:14 p.m.26 views

Security Bulletin: Apache Standard Taglibs Vulnerability Affects IBM Sterling B2B Integrator (CVE-2015-0254)

Summary IBM Sterling B2B Integrator has addressed the security vulnerability. Vulnerability Details CVEID: CVE-2015-0254 DESCRIPTION: Apache Standard Taglibs could allow a remote attacker to execute arbitrary code on the system, caused by an XML External Entity Injection XXE error when processing...

7.5CVSS9.1AI score0.1326EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2017:1701-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.1326EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2017:1568-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.1326EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/10/30 12:0 a.m.72 views

IBM WebSphere Application Server 6.1.0.x <= 6.1.0.47 / 7.0.0.x < 7.0.0.43 / 8.0.0.x < 8.0.0.13 / 8.5.x < 8.5.5.10 XXE (CVE-2015-0254)

The IBM WebSphere Application Server running on the remote host is version 6.1.x through 6.1.0.47, 7.0.0.x prior to 7.0.0.43, 8.0.0.x prior to 8.0.0.13, or 8.5.0.x prior to 8.5.5.10. It is, therefore, affected by an XML external entity injection vulnerability in the Apache Standard Taglibs...

7.5CVSS7.8AI score0.1326EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2020/09/14 6:44 p.m.5 views

ca.uhnresearch.pughlab:java-server (>=1.0.3 <=1.0.5), com.almende.eve:eve-tests (>=3.0.0 <=3.1.0) +53 more potentially affected by CVE-2015-0254 via org.apache.taglibs:taglibs-standard-impl (=1.2.1)

org.apache.taglibs:taglibs-standard-impl MAVEN version =1.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.taglibs:taglibs-standard-impl and may be impacted: - ca.uhnresearch.pughlab:java-server =1.0.3, =3.0.0, =3.0.0, =3.0.0, =2.1.1,...

7.5CVSS6.8AI score0.1326EPSS
Exploits0
OSV
OSV
added 2020/09/14 6:44 p.m.37 views

GHSA-6X4W-8W53-XRVV XXE in Apache Standard Taglibs

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

7.5CVSS8.2AI score0.1326EPSS
Exploits0References23
Github Security Blog
Github Security Blog
added 2020/09/14 6:44 p.m.64 views

XXE in Apache Standard Taglibs

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

7.5CVSS8.6AI score0.1326EPSS
Exploits0References24Affected Software2
Rows per page
Query Builder