Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache vulnerabilities and exploits

(subscribe to this query)

6.8
CVSSv2
CVE-2015-5348
Apache Camel 2.6.x through 2.14.x, 2.15.x before 2.15.5, and 2.16.x before 2.16.1, when using (1) camel-jetty or (2) camel-servlet as a consumer in Camel routes, allow remote attackers to execute arbitrary commands via a crafted serialized Java object in an HTTP request....
Apache Camel 2.16.0Apache Camel 2.14.2Apache Camel 2.14.1Apache Camel 2.12.5Apache Camel 2.12.4Apache Camel 2.11.2Apache Camel 2.11.1Apache Camel 2.11.0Apache Camel 2.10.1Apache Camel 2.10.0Apache Camel 2.9.2Apache Camel 2.9.1Apache Camel 2.8.1Apache Camel 2.8.0Apache Camel 2.15.1Apache Camel 2.15.0Apache Camel 2.13.3Apache Camel 2.13.2Apache Camel 2.12.1Apache Camel 2.12.0Apache Camel 2.10.5Apache Camel 2.10.4Apache Camel 2.9.6Apache Camel 2.9.5Apache Camel 2.8.5Apache Camel 2.8.4Apache Camel 2.7.2Apache Camel 2.7.1Apache Camel 2.14.4Apache Camel 2.14.3Apache Camel 2.13.1Apache Camel 2.13.0Apache Camel 2.11.4Apache Camel 2.11.3Apache Camel 2.10.3Apache Camel 2.10.2Apache Camel 2.9.4Apache Camel 2.9.3Apache Camel 2.8.3Apache Camel 2.8.2Apache Camel 2.7.0Apache Camel 2.6.0Apache Camel 2.15.4Apache Camel 2.15.3Apache Camel 2.15.2Apache Camel 2.14.0Apache Camel 2.13.4Apache Camel 2.12.3Apache Camel 2.12.2Apache Camel 2.10.7Apache Camel 2.10.6Apache Camel 2.9.8Apache Camel 2.9.7Apache Camel 2.9.0Apache Camel 2.8.6Apache Camel 2.7.4Apache Camel 2.7.3Apache Camel 2.7.5
5
CVSSv2
CVE-2017-5647
A bug in the handling of the pipelined requests in Apache Tomcat 9.0.0.M1 to 9.0.0.M18, 8.5.0 to 8.5.12, 8.0.0.RC1 to 8.0.42, 7.0.0 to 7.0.76, and 6.0.0 to 6.0.52, when send file was used, results in the pipelined request being lost when send file processing of the previous...
Apache Tomcat 6.0.1Apache Tomcat 6.0.2Apache Tomcat 6.0.9Apache Tomcat 6.0.10Apache Tomcat 6.0.11Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.26Apache Tomcat 6.0.27Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache Tomcat 6.0.43Apache Tomcat 6.0.33Apache Tomcat 6.0.6Apache Tomcat 6.0.34Apache Tomcat 6.0.22Apache Tomcat 6.0.25Apache Tomcat 6.0.7Apache Tomcat 6.0.52Apache Tomcat 6.0.15Apache Tomcat 6.0.42Apache Tomcat 6.0.44Apache Tomcat 6.0.50Apache Tomcat 6.0.24Apache Tomcat 6.0.23Apache Tomcat 6.0.17Apache Tomcat 6.0.32Apache Tomcat 6.0.48Apache Tomcat 6.0.0Apache Tomcat 6.0.14Apache Tomcat 6.0.41Apache Tomcat 6.0.5Apache Tomcat 6.0.49Apache Tomcat 6.0.51Apache Tomcat 6.0.16Apache Tomcat 6.0.8Apache Tomcat 6.0.39Apache Tomcat 6.0.47Apache Tomcat 6.0.4Apache Tomcat 6.0.20Apache Tomcat 6.0.21Apache Tomcat 6.0.31Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.38Apache Tomcat 6.0.37Apache Tomcat 6.0.28Apache Tomcat 6.0.45Apache Tomcat 6.0.12Apache Tomcat 6.0.46Apache Tomcat 6.0.30Apache Tomcat 6.0.13Apache Tomcat 6.0.40Apache Tomcat 7.0.73Apache Tomcat 7.0.74Apache Tomcat 7.0.4Apache Tomcat 7.0.5Apache Tomcat 7.0.12Apache Tomcat 7.0.13Apache Tomcat 7.0.21Apache Tomcat 7.0.22Apache Tomcat 7.0.29Apache Tomcat 7.0.30Apache Tomcat 7.0.37Apache Tomcat 7.0.38Apache Tomcat 7.0.49Apache Tomcat 7.0.55Apache Tomcat 7.0.63Apache Tomcat 7.0.39Apache Tomcat 7.0.46Apache Tomcat 7.0.72Apache Tomcat 7.0.76Apache Tomcat 7.0.71Apache Tomcat 7.0.6Apache Tomcat 7.0.14Apache Tomcat 7.0.48Apache Tomcat 7.0.23Apache Tomcat 7.0.7Apache Tomcat 7.0.47Apache Tomcat 7.0.41Apache Tomcat 7.0.31Apache Tomcat 7.0.15Apache Tomcat 7.0.75Apache Tomcat 7.0.16Apache Tomcat 7.0.54Apache Tomcat 7.0.32Apache Tomcat 7.0.24Apache Tomcat 7.0.40Apache Tomcat 7.0.64Apache Tomcat 7.0.62Apache Tomcat 7.0.53Apache Tomcat 7.0.20Apache Tomcat 7.0.34Apache Tomcat 7.0.58Apache Tomcat 7.0.8Apache Tomcat 7.0.1Apache Tomcat 7.0.2Apache Tomcat 7.0.51Apache Tomcat 7.0.26Apache Tomcat 7.0.28Apache Tomcat 7.0.59Apache Tomcat 7.0.65Apache Tomcat 7.0.0Apache Tomcat 7.0.50Apache Tomcat 7.0.18Apache Tomcat 7.0.11Apache Tomcat 7.0.67Apache Tomcat 7.0.66Apache Tomcat 7.0.44Apache Tomcat 7.0.69Apache Tomcat 7.0.52Apache Tomcat 7.0.42Apache Tomcat 7.0.60Apache Tomcat 7.0.45Apache Tomcat 7.0.68Apache Tomcat 7.0.19Apache Tomcat 7.0.10Apache Tomcat 7.0.36Apache Tomcat 7.0.25Apache Tomcat 7.0.35Apache Tomcat 7.0.61Apache Tomcat 7.0.57Apache Tomcat 7.0.43Apache Tomcat 7.0.27Apache Tomcat 7.0.17Apache Tomcat 7.0.9Apache Tomcat 7.0.3Apache Tomcat 7.0.56Apache Tomcat 7.0.70Apache Tomcat 7.0.33Apache Tomcat 8.0.40Apache Tomcat 8.0.41Apache Tomcat 8.0.4Apache Tomcat 8.0.5Apache Tomcat 8.0.12Apache Tomcat 8.0.13Apache Tomcat 8.0.21Apache Tomcat 8.0.22Apache Tomcat 8.0.29Apache Tomcat 8.0.30Apache Tomcat 8.0.37Apache Tomcat 8.0.38Apache Tomcat 8.0.10Apache Tomcat 8.0.0Apache Tomcat 8.0.17Apache Tomcat 8.0.26Apache Tomcat 8.0.2Apache Tomcat 8.0.20Apache Tomcat 8.0.1Apache Tomcat 8.0.19Apache Tomcat 8.0.39Apache Tomcat 8.0.27Apache Tomcat 8.0.42Apache Tomcat 8.0.11Apache Tomcat 8.0.36Apache Tomcat 8.0.33Apache Tomcat 8.0.25Apache Tomcat 8.0.18Apache Tomcat 8.0.35Apache Tomcat 8.0.3Apache Tomcat 8.0.9Apache Tomcat 8.0.16Apache Tomcat 8.0.8Apache Tomcat 8.0.34Apache Tomcat 8.0.28Apache Tomcat 8.0.7Apache Tomcat 8.0.31Apache Tomcat 8.0.15Apache Tomcat 8.0.24Apache Tomcat 8.0.23Apache Tomcat 8.0.6Apache Tomcat 8.0.32Apache Tomcat 8.0.14Apache Tomcat 8.5.0Apache Tomcat 8.5.1Apache Tomcat 8.5.11Apache Tomcat 8.5.12Apache Tomcat 8.5.6Apache Tomcat 8.5.9Apache Tomcat 8.5.10Apache Tomcat 8.5.4Apache Tomcat 8.5.5Apache Tomcat 8.5.7Apache Tomcat 8.5.8Apache Tomcat 8.5.2Apache Tomcat 8.5.3Apache Tomcat 9.0.0
5
CVSSv2
CVE-2012-0022
Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a...
Apache Tomcat 5.5.10Apache Tomcat 5.5.1Apache Tomcat 5.5.5Apache Tomcat 5.5.30Apache Tomcat 5.5.9Apache Tomcat 5.5.8Apache Tomcat 5.5.17Apache Tomcat 5.5.18Apache Tomcat 5.5.15Apache Tomcat 5.5.3Apache Tomcat 5.5.22Apache Tomcat 5.5.2Apache Tomcat 5.5.33Apache Tomcat 5.5.4Apache Tomcat 5.5.14Apache Tomcat 5.5.11Apache Tomcat 5.5.32Apache Tomcat 5.5.20Apache Tomcat 5.5.0Apache Tomcat 5.5.25Apache Tomcat 5.5.7Apache Tomcat 5.5.6Apache Tomcat 5.5.16Apache Tomcat 5.5.13Apache Tomcat 5.5.23Apache Tomcat 5.5.26Apache Tomcat 5.5.34Apache Tomcat 5.5.28Apache Tomcat 5.5.27Apache Tomcat 5.5.29Apache Tomcat 5.5.31Apache Tomcat 5.5.12Apache Tomcat 5.5.24Apache Tomcat 5.5.21Apache Tomcat 5.5.19Apache Tomcat 6.0.7Apache Tomcat 6.0.8Apache Tomcat 6.0.0Apache Tomcat 6.0.5Apache Tomcat 6.0.24Apache Tomcat 6.0.13Apache Tomcat 6.0.33Apache Tomcat 6.0.15Apache Tomcat 6.0.30Apache Tomcat 6.0.28Apache Tomcat 6.0.17Apache Tomcat 6.0.3Apache Tomcat 6.0.26Apache Tomcat 6.0.11Apache Tomcat 6.0.10Apache Tomcat 6.0.20Apache Tomcat 6.0.9Apache Tomcat 6.0.29Apache Tomcat 6.0.4Apache Tomcat 6.0.27Apache Tomcat 6.0.31Apache Tomcat 6.0.12Apache Tomcat 6.0Apache Tomcat 6.0.14Apache Tomcat 6.0.6Apache Tomcat 6.0.18Apache Tomcat 6.0.1Apache Tomcat 6.0.2Apache Tomcat 6.0.32Apache Tomcat 6.0.19Apache Tomcat 6.0.16Apache Tomcat 7.0.0Apache Tomcat 7.0.4Apache Tomcat 7.0.21Apache Tomcat 7.0.18Apache Tomcat 7.0.22Apache Tomcat 7.0.1Apache Tomcat 7.0.10Apache Tomcat 7.0.7Apache Tomcat 7.0.9Apache Tomcat 7.0.14Apache Tomcat 7.0.12Apache Tomcat 7.0.5Apache Tomcat 7.0.6Apache Tomcat 7.0.3Apache Tomcat 7.0.15Apache Tomcat 7.0.20Apache Tomcat 7.0.17Apache Tomcat 7.0.11Apache Tomcat 7.0.2Apache Tomcat 7.0.8Apache Tomcat 7.0.13Apache Tomcat 7.0.16Apache Tomcat 7.0.19
5
CVSSv2
CVE-2012-5887
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 does not properly check for stale nonce values in conjunction with enforcement of proper credentials, which makes it easier for remote attackers to...
Apache Tomcat 5.5.1Apache Tomcat 5.5.28Apache Tomcat 5.5.27Apache Tomcat 5.5.5Apache Tomcat 5.5.4Apache Tomcat 5.5.13Apache Tomcat 5.5.14Apache Tomcat 5.5.25Apache Tomcat 5.5.10Apache Tomcat 5.5.34Apache Tomcat 5.5.6Apache Tomcat 5.5.15Apache Tomcat 5.5.16Apache Tomcat 5.5.22Apache Tomcat 5.5.23Apache Tomcat 5.5.26Apache Tomcat 5.5.32Apache Tomcat 5.5.20Apache Tomcat 5.5.9Apache Tomcat 5.5.8Apache Tomcat 5.5.29Apache Tomcat 5.5.31Apache Tomcat 5.5.11Apache Tomcat 5.5.12Apache Tomcat 5.5.21Apache Tomcat 5.5.19Apache Tomcat 5.5.30Apache Tomcat 5.5.0Apache Tomcat 5.5.33Apache Tomcat 5.5.7Apache Tomcat 5.5.17Apache Tomcat 5.5.18Apache Tomcat 5.5.24Apache Tomcat 5.5.3Apache Tomcat 5.5.2Apache Tomcat 5.5.35Apache Tomcat 6.0.15Apache Tomcat 6.0.8Apache Tomcat 6.0.9Apache Tomcat 6.0.28Apache Tomcat 6.0.2Apache Tomcat 6.0.0Apache Tomcat 6.0.5Apache Tomcat 6.0.24Apache Tomcat 6.0.13Apache Tomcat 6.0.35Apache Tomcat 6.0.30Apache Tomcat 6.0Apache Tomcat 6.0.7Apache Tomcat 6.0.1Apache Tomcat 6.0.4Apache Tomcat 6.0.27Apache Tomcat 6.0.31Apache Tomcat 6.0.12Apache Tomcat 6.0.14Apache Tomcat 6.0.6Apache Tomcat 6.0.29Apache Tomcat 6.0.17Apache Tomcat 6.0.3Apache Tomcat 6.0.26Apache Tomcat 6.0.11Apache Tomcat 6.0.10Apache Tomcat 6.0.33Apache Tomcat 6.0.18Apache Tomcat 6.0.32Apache Tomcat 6.0.20Apache Tomcat 6.0.19Apache Tomcat 6.0.16Apache Tomcat 7.0.23Apache Tomcat 7.0.2Apache Tomcat 7.0.0Apache Tomcat 7.0.7Apache Tomcat 7.0.19Apache Tomcat 7.0.13Apache Tomcat 7.0.5Apache Tomcat 7.0.1Apache Tomcat 7.0.20Apache Tomcat 7.0.4Apache Tomcat 7.0.22Apache Tomcat 7.0.9Apache Tomcat 7.0.6Apache Tomcat 7.0.21Apache Tomcat 7.0.17Apache Tomcat 7.0.14Apache Tomcat 7.0.3Apache Tomcat 7.0.12Apache Tomcat 7.0.8Apache Tomcat 7.0.28Apache Tomcat 7.0.18Apache Tomcat 7.0.15Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.25Apache Tomcat 7.0.16
6.4
CVSSv2
CVE-2014-0227
java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat 6.x before 6.0.42, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle attempts to continue reading data after an error has occurred, which allows remote attackers to conduct HTTP request...
Apache Tomcat 6.0.2Apache Tomcat 6.0.7Apache Tomcat 6.0.11Apache Tomcat 6.0.12Apache Tomcat 6.0.20Apache Tomcat 6.0.24Apache Tomcat 6.0.32Apache Tomcat 6.0.33Apache Tomcat 7.0.0Apache Tomcat 7.0.1Apache Tomcat 6.0.0Apache Tomcat 7.0.53Apache Tomcat 6.0.4Apache Tomcat 7.0.39Apache Tomcat 7.0.46Apache Tomcat 6.0.15Apache Tomcat 8.0.1Apache Tomcat 7.0.6Apache Tomcat 7.0.18Apache Tomcat 7.0.23Apache Tomcat 6.0.9Apache Tomcat 7.0.45Apache Tomcat 7.0.31Apache Tomcat 7.0.30Apache Tomcat 7.0.54Apache Tomcat 8.0.0Apache Tomcat 7.0.32Apache Tomcat 6.0.5Apache Tomcat 7.0.24Apache Tomcat 7.0.17Apache Tomcat 7.0.4Apache Tomcat 6.0.8Apache Tomcat 6.0.16Apache Tomcat 7.0.2Apache Tomcat 7.0.49Apache Tomcat 6.0.39Apache Tomcat 7.0.20Apache Tomcat 7.0.5Apache Tomcat 7.0.22Apache Tomcat 7.0.28Apache Tomcat 7.0.50Apache Tomcat 7.0.14Apache Tomcat 6.0.10Apache Tomcat 6.0.31Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.1Apache Tomcat 7.0.44Apache Tomcat 6.0.37Apache Tomcat 6.0.17Apache Tomcat 7.0.52Apache Tomcat 7.0.42Apache Tomcat 6.0.28Apache Tomcat 7.0.37Apache Tomcat 7.0.29Apache Tomcat 7.0.13Apache Tomcat 7.0.41Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 6.0.41Apache Tomcat 7.0.36Apache Tomcat 7.0.35Apache Tomcat 6.0.18Apache Tomcat 7.0.43Apache Tomcat 7.0.38Apache Tomcat 7.0.21Apache Tomcat 7.0.27Apache Tomcat 6.0.30Apache Tomcat 7.0.9Apache Tomcat 8.0.8Apache Tomcat 7.0.3Apache Tomcat 6.0.19Apache Tomcat 7.0.12Apache Tomcat 6.0.6Apache Tomcat 7.0.34Apache Tomcat 7.0.8Apache Tomcat 7.0.26Apache Tomcat 8.0.5Apache Tomcat 7.0.48Apache Tomcat 7.0.11Apache Tomcat 7.0.7Apache Tomcat 7.0.47Apache Tomcat 6.0.14Apache Tomcat 7.0.19Apache Tomcat 7.0.10Apache Tomcat 7.0.25Apache Tomcat 8.0.3Apache Tomcat 7.0.40Apache Tomcat 6.0.13Apache Tomcat 6.0.26Apache Tomcat 6.0.27Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache Tomcat 7.0.33
4.3
CVSSv2
CVE-2012-3373
Cross-site scripting (XSS) vulnerability in Apache Wicket 1.4.x before 1.4.21 and 1.5.x before 1.5.8 allows remote attackers to inject arbitrary web script or HTML via vectors involving a %00 sequence in an Ajax link URL associated with a Wicket app....
Apache Wicket 1.4.3Apache Wicket 1.4.4Apache Wicket 1.4.5Apache Wicket 1.4.13Apache Wicket 1.4.20Apache Wicket 1.4.19Apache Wicket 1.4.7Apache Wicket 1.4.15Apache Wicket 1.4.11Apache Wicket 1.4.12Apache Wicket 1.4.9Apache Wicket 1.4.8Apache Wicket 1.4.16Apache Wicket 1.4.17Apache Wicket 1.4.10Apache Wicket 1.4.1Apache Wicket 1.4.2Apache Wicket 1.4.6Apache Wicket 1.4.14Apache Wicket 1.4.18Apache Wicket 1.5.1Apache Wicket 1.5.0Apache Wicket 1.5.2Apache Wicket 1.5.7Apache Wicket 1.5.3Apache Wicket 1.5.4Apache Wicket 1.5.5Apache Wicket 1.5.6
4.3
CVSSv2
CVE-2007-2449
Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary...
Apache Tomcat 4.0.2Apache Tomcat 4.0.3Apache Tomcat 5.0.12Apache Tomcat 5.0.13Apache Tomcat 5.0.2Apache Tomcat 5.0.21Apache Tomcat 5.0.29Apache Tomcat 5.0.3Apache Tomcat 5.0.9Apache Tomcat 5.5.0Apache Tomcat 5.5.15Apache Tomcat 5.5.16Apache Tomcat 5.5.3Apache Tomcat 5.5.4Apache Tomcat 6.0.1Apache Tomcat 6.0.10Apache Tomcat 6.0.5Apache Tomcat 6.0.6Apache Tomcat 4.0.4Apache Tomcat 4.0.5Apache Tomcat 5.0.14Apache Tomcat 5.0.15Apache Tomcat 5.0.22Apache Tomcat 5.0.23Apache Tomcat 5.0.30Apache Tomcat 5.0.4Apache Tomcat 5.5.1Apache Tomcat 5.5.10Apache Tomcat 5.5.17Apache Tomcat 5.5.18Apache Tomcat 5.5.5Apache Tomcat 5.5.6Apache Tomcat 6.0.11Apache Tomcat 6.0.12Apache Tomcat 6.0.7Apache Tomcat 6.0.8Apache TomcatApache Tomcat 4.0.0Apache Tomcat 4.0.1Apache Tomcat 5.0.10Apache Tomcat 5.0.11Apache Tomcat 5.0.18Apache Tomcat 5.0.19Apache Tomcat 5.0.26Apache Tomcat 5.0.27Apache Tomcat 5.0.28Apache Tomcat 5.0.7Apache Tomcat 5.0.8Apache Tomcat 5.5.13Apache Tomcat 5.5.14Apache Tomcat 5.5.21Apache Tomcat 5.5.22Apache Tomcat 5.5.9Apache Tomcat 6.0.0Apache Tomcat 6.0.3Apache Tomcat 6.0.4Apache Tomcat 5.0.0Apache Tomcat 5.0.1Apache Tomcat 5.0.16Apache Tomcat 5.0.17Apache Tomcat 5.0.24Apache Tomcat 5.0.25Apache Tomcat 5.0.5Apache Tomcat 5.0.6Apache Tomcat 5.5.11Apache Tomcat 5.5.12Apache Tomcat 5.5.19Apache Tomcat 5.5.2Apache Tomcat 5.5.20Apache Tomcat 5.5.7Apache Tomcat 5.5.8Apache Tomcat 6.0.13Apache Tomcat 6.0.2
4.4
CVSSv2
CVE-2011-3376
org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application, which allows local users to gain privileges by using an untrusted web application to access the Manager...
Apache Tomcat 7.0.0Apache Tomcat 7.0.7Apache Tomcat 7.0.8Apache Tomcat 7.0.17Apache Tomcat 7.0.15Apache Tomcat 7.0.1Apache Tomcat 7.0.2Apache Tomcat 7.0.9Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.18Apache Tomcat 7.0.12Apache Tomcat 7.0.20Apache Tomcat 7.0.5Apache Tomcat 7.0.6Apache Tomcat 7.0.14Apache Tomcat 7.0.13Apache Tomcat 7.0.19Apache Tomcat 7.0.16Apache Tomcat 7.0.21Apache Tomcat 7.0.4Apache Tomcat 7.0.3
5
CVSSv2
CVE-2016-3093
Apache Struts 2.0.0 through 2.3.24.1 does not properly cache method references when used with OGNL before 3.0.12, which allows remote attackers to cause a denial of service (block access to a web site) via unspecified vectors....
Ognl Project OgnlApache Struts 2.3.16.2Apache Struts 2.3.16.1Apache Struts 2.3.14.1Apache Struts 2.3.14Apache Struts 2.3.1.1Apache Struts 2.3.1Apache Struts 2.1.6Apache Struts 2.3.24.1Apache Struts 2.3.24Apache Struts 2.3.16Apache Struts 2.3.15.3Apache Struts 2.3.15.2Apache Struts 2.3.12Apache Struts 2.3.8Apache Struts 2.2.3.1Apache Struts 2.2.3Apache Struts 2.1.3Apache Struts 2.1.2Apache Struts 2.0.11.1Apache Struts 2.0.11Apache Struts 2.0.4Apache Struts 2.0.3Apache Struts 2.1.5Apache Struts 2.1.4Apache Struts 2.0.12Apache Struts 2.0.11.2Apache Struts 2.0.6Apache Struts 2.0.5Apache Struts 2.3.20.3Apache Struts 2.3.20.1Apache Struts 2.3.15.1Apache Struts 2.3.15Apache Struts 2.3.7Apache Struts 2.3.4.1Apache Struts 2.2.1.1Apache Struts 2.2.1Apache Struts 2.1.1Apache Struts 2.1.0Apache Struts 2.0.10Apache Struts 2.0.9Apache Struts 2.0.2Apache Struts 2.0.1Apache Struts 2.3.20Apache Struts 2.3.16.3Apache Struts 2.3.14.3Apache Struts 2.3.14.2Apache Struts 2.3.4Apache Struts 2.3.1.2Apache Struts 2.1.8.1Apache Struts 2.1.8Apache Struts 2.0.14Apache Struts 2.0.13Apache Struts 2.0.8Apache Struts 2.0.7Apache Struts 2.0.0
5
CVSSv2
CVE-2008-2370
Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when a RequestDispatcher is used, performs path normalization before removing the query string from the URI, which allows remote attackers to conduct directory traversal attacks and read...
Apache Tomcat 4.1.0Apache Tomcat 4.1.15Apache Tomcat 4.1.16Apache Tomcat 4.1.23Apache Tomcat 4.1.24Apache Tomcat 4.1.30Apache Tomcat 4.1.31Apache Tomcat 4.1.4Apache Tomcat 4.1.5Apache Tomcat 4.1.6Apache Tomcat 5.5.11Apache Tomcat 5.5.12Apache Tomcat 4.1.2Apache Tomcat 4.1.35Apache Tomcat 4.1.36Apache Tomcat 4.1.21Apache Tomcat 5.5.4Apache Tomcat 5.5.15Apache Tomcat 4.1.27Apache Tomcat 4.1.11Apache Tomcat 4.1.14Apache Tomcat 5.5.3Apache Tomcat 4.1.29Apache Tomcat 4.1.22Apache Tomcat 4.1.13Apache Tomcat 5.5.2Apache Tomcat 5.5.0Apache Tomcat 4.1.12Apache Tomcat 4.1.28Apache Tomcat 5.5.16Apache Tomcat 4.1.20Apache Tomcat 4.1.3Apache Tomcat 5.5.19Apache Tomcat 4.1.34Apache Tomcat 4.1.37Apache Tomcat 4.1.9Apache Tomcat 5.5.18Apache Tomcat 6.0.6Apache Tomcat 6.0.11Apache Tomcat 5.5.14Apache Tomcat 5.5.10Apache Tomcat 5.5.7Apache Tomcat 5.5.1Apache Tomcat 6.0.7Apache Tomcat 4.1.25Apache Tomcat 6.0.4Apache Tomcat 5.5.6Apache Tomcat 5.5.26Apache Tomcat 5.5.20Apache Tomcat 5.5.5Apache Tomcat 6.0.15Apache Tomcat 4.1.7Apache Tomcat 5.5.21Apache Tomcat 4.1.18Apache Tomcat 5.5.22Apache Tomcat 6.0.10Apache Tomcat 6.0.3Apache Tomcat 4.1.19Apache Tomcat 6.0.9Apache Tomcat 4.1.26Apache Tomcat 4.1.8Apache Tomcat 5.5.9Apache Tomcat 5.5.25Apache Tomcat 6.0.0Apache Tomcat 4.1.17Apache Tomcat 6.0.14Apache Tomcat 4.1.33Apache Tomcat 4.1.1Apache Tomcat 5.5.13Apache Tomcat 6.0.1Apache Tomcat 6.0.12Apache Tomcat 5.5.24Apache Tomcat 4.1.10Apache Tomcat 5.5.8Apache Tomcat 6.0.5Apache Tomcat 5.5.17Apache Tomcat 4.1.32Apache Tomcat 6.0.2Apache Tomcat 6.0.13Apache Tomcat 5.5.23Apache Tomcat 6.0.16Apache Tomcat 6.0.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-36542NULL pointer dereferenceCVE-2021-3490CVE-2021-36934code injectionSSRFCVE-2021-34632CVE-2021-33325CVE-2021-27503
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook