Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

GithubExploit
GithubExploitadded 2022/11/04 7:26 p.m.247 views

Exploit for Code Injection in Apache Commons_Text

CVE-2022-42889-PoC Proof of Concept for CVE-2022-42889 remote...

9.8CVSS8.7AI score0.99931EPSS
Exploits41
Imperva Blog
Imperva Blogadded 2022/10/18 6:30 p.m.120 views

Apache Commons Text vulnerability CVE-2022-42889

Updated Oct. 19, 2022 CVE-2022-42889 was recently added to the NVD catalog, with a critical score of 9.8. This vulnerability allows remote code execution RCE in Apache Commons Text. It affects version numbers 1.5-1.9, and an upgrade to Apache Commons Text 1.10.0 disables the problem by default...

1.4AI score0.99931EPSS
Exploits41
Github Security Blog
Github Security Blogadded 2022/10/13 7:0 p.m.687 views

Arbitrary code execution in Apache Commons Text

Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "$prefix:name", where "prefix" is used to locate an instance of org.apache.commons.text.lookup.StringLookup that performs the interpolation...

9.8CVSS9.9AI score0.99931EPSS
Exploits41References13Affected Software2
Rows per page
Query Builder