Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache ofbiz 10.04.03 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-0177
Multiple cross-site scripting (XSS) vulnerabilities in widget/screen/ModelScreenWidget.java in Apache Open For Business Project (aka OFBiz) 10.04.x prior to 10.04.05, 11.04.01, and possibly 09.04.x allow remote authenticated users to inject arbitrary web script or HTML via the (1...
Apache Ofbiz 09.04
Apache Ofbiz 09.04.01
Apache Ofbiz 10.04
Apache Ofbiz 10.04.01
Apache Ofbiz 10.04.02
Apache Ofbiz 10.04.03
Apache Ofbiz 10.04.04
Apache Ofbiz 11.04.01
1 EDB exploit
NA
CVE-2013-2250
Apache Open For Business Project (aka OFBiz) 10.04.01 up to and including 10.04.05, 11.04.01 up to and including 11.04.02, and 12.04.01 allows remote malicious users to execute arbitrary Unified Expression Language (UEL) functions via JUEL metacharacters in unspecified parameters...
Apache Ofbiz 10.04.01
Apache Ofbiz 10.04.02
Apache Ofbiz 10.04.03
Apache Ofbiz 10.04.04
Apache Ofbiz 10.04.05
Apache Ofbiz 11.04.01
Apache Ofbiz 11.04.02
Apache Ofbiz 12.04.01
NA
CVE-2013-2137
Cross-site scripting (XSS) vulnerability in the "View Log" screen in the Webtools application in Apache Open For Business Project (aka OFBiz) 10.04.01 up to and including 10.04.05, 11.04.01 up to and including 11.04.02, and 12.04.01 allows remote malicious users to inje...
Apache Ofbiz 10.04.01
Apache Ofbiz 10.04.02
Apache Ofbiz 10.04.03
Apache Ofbiz 10.04.04
Apache Ofbiz 10.04.05
Apache Ofbiz 11.04.01
Apache Ofbiz 11.04.02
Apache Ofbiz 12.04.01
NA
CVE-2012-3506
Unspecified vulnerability in the Apache Open For Business Project (aka OFBiz) 10.04.x prior to 10.04.03 has unknown impact and attack vectors.
Apache Ofbiz 10.04.01
Apache Ofbiz 10.04.02
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SQL injection
CVE-2024-52320
SQL
logic flaw
CVE-2024-6387
CVE-2024-11457
CVE-2024-11329
CVE-2024-50404
CVE-2023-48788
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started