Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache ofbiz 11.04.06 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2016-6800
The default configuration of the Apache OFBiz framework offers a blog functionality. Different users are able to operate blogs which are related to specific parties. In the form field for the creation of new blog articles the user input of the summary field as well as the article...
Apache Ofbiz 11.04
Apache Ofbiz 11.04.01
Apache Ofbiz 11.04.02
Apache Ofbiz 11.04.03
Apache Ofbiz 11.04.04
Apache Ofbiz 11.04.05
Apache Ofbiz 11.04.06
Apache Ofbiz 12.04
Apache Ofbiz 12.04.01
Apache Ofbiz 12.04.02
Apache Ofbiz 12.04.03
Apache Ofbiz 12.04.04
8.8
CVSSv3
CVE-2016-4462
By manipulating the URL parameter externalLoginKey, a malicious, logged in user could pass valid Freemarker directives to the Template Engine that are reflected on the webpage; a specially crafted Freemarker template could be used for remote code execution. Mitigation: Upgrade to...
Apache Ofbiz 11.04
Apache Ofbiz 11.04.01
Apache Ofbiz 11.04.02
Apache Ofbiz 11.04.03
Apache Ofbiz 11.04.04
Apache Ofbiz 11.04.05
Apache Ofbiz 11.04.06
Apache Ofbiz 12.04
Apache Ofbiz 12.04.01
Apache Ofbiz 12.04.02
Apache Ofbiz 12.04.03
Apache Ofbiz 12.04.04
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-21317
CVE-2025-23940
buffer overflow
CVE-2025-21335
CVE-2025-23860
CVE-2024-57704
SSTI
wireless
CVE-2019-3309
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started