CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2015-2992	1 Apache	1 Struts	2024-11-21	6.1 Medium
Apache Struts before 2.3.20 has a cross-site scripting (XSS) vulnerability.
CVE-2012-1592	1 Apache	1 Struts	2024-11-21	8.8 High
A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.
CVE-2011-3923	2 Apache, Redhat	2 Struts, Jboss Enterprise Web Server	2024-11-21	9.8 Critical
Apache Struts before 2.3.1.2 allows remote attackers to bypass security protections in the ParameterInterceptor class and execute arbitrary commands.

« first previous Page 5 of 5.