Apache Apache Ofbiz Vulnerabilities
Apache Apache Ofbiz vulnerabilities.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
SSRF and Code Injection Vulnerability in Apache OFBiz (before 18.12.17)
CVE-2024-47208ApacheApache OfbizInjection and CSRF Vulnerability in Apache OFBiz Prior to 18.12.17
CVE-2024-48962ApacheApache OfbizApache OFBiz vulnerable to 'Forced Browsing' (Direct Request) attack
CVE-2024-45195ApacheApache Ofbiz👾🟡📰7.5HIGHServer-Side Request Forgery (SSRF) and Improper Control of Generation of Code (Code Injection) Vulnerability in Apache OFBiz
CVE-2024-45507ApacheApache Ofbiz📈EPSS 50%9.8CRITICALIncorrect Authorization Vulnerability Affects Apache OFBiz Through 18.12.14
CVE-2024-38856ApacheApache Ofbiz🥇📈💰👾🟡EPSS 94%🦅📰9.8CRITICALApache OFBiz vulnerable to Path Traversal attack
CVE-2024-36104ApacheApache Ofbiz👾🟡📰Apache OFBiz Fixes Path Traversal Vulnerability
CVE-2024-32113ApacheApache Ofbiz💰👾🟡EPSS 93%🦅📰9.8CRITICALApache OFBiz File Inclusion Vulnerability
CVE-2024-23946ApacheApache Ofbiz5.3MEDIUMApache OFBiz Authentication Bypass Vulnerability
CVE-2024-25065ApacheApache OfbizRemote Code Execution Vulnerability in Apache Struts
CVE-2023-51467ApacheApache Ofbiz📈👾🟡EPSS 62%📰9.8CRITICALApache OFBiz: Arbitrary file properties reading and SSRF attack
CVE-2023-50968ApacheApache OFBizEPSS 54%📰7.5HIGHPre-auth RCE in Apache Ofbiz Prior to 18.12.10 Due to XML-RPC No Longer Maintained
CVE-2023-49070ApacheApache Ofbiz👾🟡EPSS 89%📰9.8CRITICALApache OFBiz: Execution of Solr plugin queries without authentication
CVE-2023-46819ApacheApache Ofbiz5.3MEDIUMApache OFBiz: Arbitrary file reading vulnerability
CVE-2022-47501ApacheApache Ofbiz7.5HIGHRegular Expression Denial of Service (ReDoS) vulnerability in Apache OFBiz
CVE-2022-29158ApacheApache Ofbiz7.5HIGHJava Deserialization via RMI Connection from the Solr plugin of Apache OFBiz
CVE-2022-29063ApacheApache Ofbiz👾🟡9.8CRITICALServer-Side Template Injection affecting the ecommerce plugin of Apache OFBiz
CVE-2022-25813ApacheApache Ofbiz👾🟡7.5HIGHUnauth Path Traversal with file corruption affecting the Birt plugin of Apache OFBiz
CVE-2022-25371ApacheApache Ofbiz9.8CRITICALUnauth Stored XSS vulnerability in the Birt plugin of Apache OFBiz
CVE-2022-25370ApacheApache Ofbiz5.4MEDIUMArbitrary file upload vulnerability in OFBiz
CVE-2021-37608ApacheApache Ofbiz9.8CRITICALUnsafe deserialization in Apache OFBiz
CVE-2021-30128ApacheApache Ofbiz👾🟡EPSS 56%9.8CRITICALRCE vulnerability in latest Apache OFBiz due to Java serialisation using RMI
CVE-2021-29200ApacheApache Ofbiz👾🟡EPSS 94%9.8CRITICALRCE vulnerability in latest Apache OFBiz due to Java serialisation using RMI
CVE-2021-26295ApacheApache Ofbiz👾🟡EPSS 97%9.8CRITICAL- CVE-2020-9496ApacheApache Ofbiz👾🟡EPSS 92%6.1MEDIUM
- CVE-2020-13923ApacheApache Ofbiz5.3MEDIUM