pkg:Maven/org.apache.archiva:archiva

11 total CVEsHIGH3MEDIUM6

✅ Check your installed version

All known vulnerabilities

  • HIGH8.0CVE-2017-5657Apache Archiva vulnerable to Cross Site Request Forgery
    from 0, < 2.2.3
  • HIGH7.5CVE-2024-27139Apache Archiva Incorrect Authorization vulnerability
    >= 2.0.0, <= 2.2.10
  • HIGH7.5CVE-2024-27138Apache Archiva Incorrect Authorization vulnerability
    from 0, <= 2.2.10
  • MEDIUM6.5CVE-2023-28158Apache Archiva vulnerable to privilege escalation via stored cross-site scripting (XSS)
    >= 2.0.0, < 2.2.10
  • MEDIUM6.5CVE-2022-29405Missing Authorization in Apache Archiva
    from 0, < 2.2.8
  • MEDIUM6.5CVE-2019-0213Cross-site scripting in Apache Archiva
    from 0, < 2.2.4
  • MEDIUM6.5CVE-2019-0214Improper Input Validation in Apache Archiva
    >= 2.2.0, < 2.2.4
  • MEDIUM5.3CVE-2020-9495Injection in Apache Archiva
    from 0, < 2.2.5
  • MEDIUM4.8CVE-2016-5005Apache Archiva vulnerable to Cross-site Scripting
    from 0, < 2.2.1
  • CVE-2011-0533Apache Continuum and Archiva vulnerable to Cross-site Scripting
    >= 1.0, < 1.3.4
  • CVE-2010-4408Apache Archiva does not require entry of the administrator's password at the time of modifying a user account
    >= 1.0, < 1.3.2