Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
CVE-2026-1622
Neo4j Enterprise and Community vulnerable to a potential information disclosure
CVE-2026-23795
Apache Syncope: Console XXE on Keymaster parameters
CVE-2026-23794
Apache Syncope: Reflected XSS on Enduser Login
CVE-2026-25526
JinJava Bypass through ForTag leads to Arbitrary Java Execution
CVE-2026-1770
Crafter CMS has Improper Control of Dynamically-Managed Code Resources
CVE-2024-5986
H2O has an External Control of File Name or Path vulnerability
CVE-2026-1518
Keycloak Server-Side Request Forgery (SSRF) vulnerability
CVE-2025-13881
Keycloak Admin API allows an administrator with limited privileges to retrieve sensitive custom attributes
CVE-2024-4027
Undertow Servlets Vulnerable to Remote DoS via OutOfMemoryError when Passed Large Parameter Names
CVE-2026-24807
Quick-Media Batik Codec FIX Package has Buffer Overflow Vulnerability in PNG Codec
CVE-2026-24819
weixin4j has Improperly Controlled Sequential Memory Allocation
CVE-2026-24806
Quick-Media Batik Codec FIX package has Code Injection vulnerability
CVE-2026-24802
jsonrpc4j has Infinite Loop in RPC Stream Writer
CVE-2026-24400
AssertJ has XML External Entity (XXE) vulnerability when parsing untrusted XML via isXmlEqualTo assertion
CVE-2026-1190
Keycloak's missing timestamp validation allows attackers to extend SAML response validity periods
CVE-2025-14969
Hibernate Reactive Vulnerable to DoS via Connection Pool Exhaustion
CVE-2016-15057
Apache Continuum vulnerable to Command Injection through Installations REST API
CVE-2026-24656
Apache Karaf Decanter has Deserialization of Untrusted Data in its Log Socket Collector
CVE-2025-27821
Apache Hadoop HDFS Native Client has Out-of-bounds Write Vulnerability
CVE-2026-24128
XWiki Affected by Reflected Cross-Site Scripting (XSS) in Error Messages
Showing 1 - 20 of 1,000+ results