Ofbiz Security Vulnerabilities and Issues — Ofbiz CVE List | Vulners.com

Lucene search

K

ApacheOfbiz

3 matches found

CVE•added 2020/04/30 8:15 p.m.•72 views

CVE-2019-0235

Apache OFBiz 17.12.01 is vulnerable to some CSRF attacks.

8.8CVSS8.6AI score0.26016EPSS

CVE•added 2020/04/01 7:15 p.m.•58 views

CVE-2020-1943

Data sent with contentId to /control/stream is not sanitized, allowing XSS attacks in Apache OFBiz 16.11.01 to 16.11.07.

6.1CVSS5.9AI score0.86811EPSS

CVE•added 2020/04/30 8:15 p.m.•42 views

CVE-2019-12425

Apache OFBiz 17.12.01 is vulnerable to Host header injection by accepting arbitrary host

7.5CVSS7.6AI score0.02178EPSS