Apache Ofbiz Vulnerabilities
Apache Apache Ofbiz vulnerabilities.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
XSS Vulnerability in Apache OFBiz Affects Web Applications
CVE-2025-30676ApacheApache Ofbiz6.1MEDIUMTemplate Engine Vulnerability in Apache OFBiz Affects Multiple Versions
CVE-2025-26865ApacheApache Ofbiz๐พ๐ก3.5LOWSSRF and Code Injection Vulnerability in Apache OFBiz (before 18.12.17)
CVE-2024-47208ApacheApache OfbizInjection and CSRF Vulnerability in Apache OFBiz Prior to 18.12.17
CVE-2024-48962ApacheApache Ofbiz8.8HIGHApache OFBiz vulnerable to 'Forced Browsing' (Direct Request) attack
CVE-2024-45195ApacheApache Ofbiz๐พEPSS 94%๐ฆ ๐ฐ7.5HIGHServer-Side Request Forgery (SSRF) and Improper Control of Generation of Code (Code Injection) Vulnerability in Apache OFBiz
CVE-2024-45507ApacheApache Ofbiz๐EPSS 87%9.8CRITICALIncorrect Authorization Vulnerability Affects Apache OFBiz Through 18.12.14
CVE-2024-38856ApacheApache Ofbiz๐ฅ๐๐ฐ๐พ๐กEPSS 94%๐ฆ ๐ฐ9.8CRITICALApache OFBiz vulnerable to Path Traversal attack
CVE-2024-36104ApacheApache Ofbiz๐พEPSS 93%๐ฐ9.1CRITICALApache OFBiz Fixes Path Traversal Vulnerability
CVE-2024-32113ApacheApache Ofbiz๐ฐ๐พ๐กEPSS 93%๐ฆ ๐ฐ9.8CRITICALApache OFBiz Authentication Bypass Vulnerability
CVE-2024-25065ApacheApache Ofbiz9.1CRITICALApache OFBiz File Inclusion Vulnerability
CVE-2024-23946ApacheApache Ofbiz5.3MEDIUMRemote Code Execution Vulnerability in Apache Struts
CVE-2023-51467ApacheApache Ofbiz๐๐พ๐กEPSS 93%๐ฐ9.8CRITICALApache OFBiz: Arbitrary file properties reading and SSRF attack
CVE-2023-50968ApacheApache OfbizEPSS 81%๐ฐ7.5HIGHPre-auth RCE in Apache Ofbiz Prior to 18.12.10 Due to XML-RPC No Longer Maintained
CVE-2023-49070ApacheApache Ofbiz๐พ๐กEPSS 93%๐ฐ9.8CRITICALApache OFBiz: Execution of Solr plugin queries without authentication
CVE-2023-46819ApacheApache Ofbiz5.3MEDIUMApache OFBiz: Arbitrary file reading vulnerability
CVE-2022-47501ApacheApache OfbizEPSS 80%7.5HIGHRegular Expression Denial of Service (ReDoS) vulnerability in Apache OFBiz
CVE-2022-29158ApacheApache Ofbiz7.5HIGHJava Deserialization via RMI Connection from the Solr plugin of Apache OFBiz
CVE-2022-29063ApacheApache Ofbiz๐พ๐กEPSS 15%9.8CRITICALServer-Side Template Injection affecting the ecommerce plugin of Apache OFBiz
CVE-2022-25813ApacheApache Ofbiz๐พ๐กEPSS 45%7.5HIGHUnauth Path Traversal with file corruption affecting the Birt plugin of Apache OFBiz
CVE-2022-25371ApacheApache Ofbiz9.8CRITICALUnauth Stored XSS vulnerability in the Birt plugin of Apache OFBiz
CVE-2022-25370ApacheApache Ofbiz5.4MEDIUMArbitrary file upload vulnerability in OFBiz
CVE-2021-37608ApacheApache Ofbiz9.8CRITICALUnsafe deserialization in Apache OFBiz
CVE-2021-30128ApacheApache Ofbiz๐พ๐กEPSS 94%9.8CRITICALRCE vulnerability in latest Apache OFBiz due to Java serialisation using RMI
CVE-2021-29200ApacheApache Ofbiz๐พ๐กEPSS 93%9.8CRITICALRCE vulnerability in latest Apache OFBiz due to Java serialisation using RMI
CVE-2021-26295ApacheApache Ofbiz๐พ๐กEPSS 94%9.8CRITICAL