Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Apache

Apache OFBiz

3 Versions 4 CVEs

Versions

16.11.01 to 16.11.07

Apache OFBiz 16.11.01 to 16.11.06

17.12.01

SEMANTIC 2 CVEs

Recent CVEs

CVE-2019-0235

Apache OFBiz 17.12.01 is vulnerable to some CSRF attacks.

UNKNOWN Apr 30, 2020

CVE-2019-12425

Apache OFBiz 17.12.01 is vulnerable to Host header injection by accepting arbitrary host

UNKNOWN Apr 30, 2020

CVE-2020-1943

Data sent with contentId to /control/stream is not sanitized, allowing XSS attacks in Apache OFBiz 16.11.01 to 16.11.07.

UNKNOWN Apr 01, 2020

CVE-2019-12426

an unauthenticated user could get access to information of some backend screens by invoking setSessionLocale in Apache OFBiz 16.11.01 to 16.11.06

UNKNOWN Feb 06, 2020