VulnScope — 以套件為主體的 CVE 查詢工具- HIGH7.5CVE-2006-1547⚠ KEVEPSS 54.6%Improper Input Validation in Apache Struts
- CRITICAL9.8⚠ KEVEPSS 94.5%Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression
- CRITICAL9.8⚠ KEVEPSS 94.4%Remote Code Execution in Spring Framework
- CRITICAL10.0⚠ KEVEPSS 94.5%Spring Cloud Gateway vulnerable to Code Injection when Gateway Actuator endpoint enabled, exposed, unsecured
- CRITICAL9.8⚠ KEVEPSS 94.4%Remote code execution in Apache Struts
- CRITICAL9.0⚠ KEVEPSS 94.3%apache-log4j2 - security update
- CRITICAL10.0⚠ KEVEPSS 94.4%apache-log4j2 - security update
- HIGH8.5⚠ KEVEPSS 94.3%XStream is vulnerable to a Remote Command Execution attack
- CRITICAL9.8⚠ KEVEPSS 94.1%Inadequate Encryption Strength
- CRITICAL9.8⚠ KEVEPSS 94.1%Authentication bypass in Apache Airflow
- HIGH7.8⚠ KEVEPSS 94.0%Command Injection Vulnerability
- HIGH7.5⚠ KEVEPSS 94.3%Apache Flink directory traversal attack: reading remote files through the REST API
- MEDIUM6.5⚠ KEVEPSS 61.5%chromium - security update
- HIGH8.8⚠ KEVEPSS 93.7%Command Injection in Kylin
- HIGH8.8⚠ KEVEPSS 94.3%Remote code execution (RCE) in Apache Airflow
- CRITICAL9.8⚠ KEVEPSS 94.5%Improper Privilege Management in Tomcat
- HIGH7.5⚠ KEVEPSS 94.3%Directory traversal attack in Spring Cloud Config
- MEDIUM6.9⚠ KEVEPSS 34.7%Potential XSS vulnerability in jQuery
- HIGH8.8⚠ KEVEPSS 94.4%Nexus Repository Manager 3 - Remote Code Execution
- HIGH7.5⚠ KEVEPSS 98.6%Improper Input Validation in Apache Solr
- CRITICAL9.9⚠ KEVEPSS 84.8%Remote Code Execution Vulnerability in NPM mongo-express
- HIGH7.2⚠ KEVEPSS 83.5%lucene-solr - security update
- HIGH8.1⚠ KEVEPSS 100.0%Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
- CRITICAL10.0⚠ KEVEPSS 100.0%Apache Struts vulnerable to remote arbitrary command execution due to improper input validation
- CRITICAL9.8⚠ KEVEPSS 95.6%Spring Data Commons remote code injection vulnerability