Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
owasp enterprise security api 2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5679
The authenticated-encryption feature in the symmetric-encryption implementation in the OWASP Enterprise Security API (ESAPI) for Java 2.x prior to 2.1.0 does not properly resist tampering with serialized ciphertext, which makes it easier for remote malicious users to bypass inten...
Owasp Enterprise Security Api 2.0.1
Owasp Enterprise Security Api 2.0
5.9
CVSSv3
CVE-2010-3300
It was found that all OWASP ESAPI for Java up to version 2.0 RC2 are vulnerable to padding oracle attacks.
Owasp Enterprise Security Api For Java
Owasp Enterprise Security Api For Java 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started