Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2005-4849 Vulnerability in maven package org.apache.derby:derby CWE-200 CWE-200 Critical CVE-2006-1546 Vulnerability in maven package struts:struts Critical CVE-2006-1547 Vulnerability in maven package struts:struts High CVE-2006-1548 Vulnerability in maven package struts:struts Critical CVE-2006-2759 Vulnerability in maven package org.mortbay.jetty:jetty Critical CVE-2006-6916 Vulnerability in maven package dwr:dwr Critical CVE-2007-0184 Vulnerability in maven package dwr:dwr Critical CVE-2007-0185 Vulnerability in maven package dwr:dwr Critical CVE-2007-1358 Vulnerability in maven package tomcat:tomcat-http11 CWE-79 CWE-79 Critical CVE-2007-4556 Vulnerability in maven package opensymphony:xwork Critical CVE-2007-5333 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-200 CWE-200 Critical CVE-2007-5333 Vulnerability in maven package tomcat:tomcat-coyote CWE-200 CWE-200 Critical CVE-2007-5613 Vulnerability in maven package org.mortbay.jetty:jetty CWE-79 CWE-79 Critical CVE-2007-5614 Vulnerability in maven package org.mortbay.jetty:jetty Critical CVE-2007-6433 Vulnerability in maven package org.jboss.seam:jboss-seam CWE-20 CWE-20 Critical CVE-2008-0002 Vulnerability in maven package org.apache.tomcat:catalina Critical CVE-2008-0128 Vulnerability in maven package tomcat:catalina CWE-16 CWE-16 Critical CVE-2008-1285 Vulnerability in maven package javax.faces:jsf-impl CWE-79 CWE-79 Critical CVE-2008-5515 Vulnerability in maven package org.apache.tomcat:catalina CWE-22 CWE-22 Critical CVE-2008-5515 Vulnerability in maven package tomcat:catalina CWE-22 CWE-22 Critical CVE-2008-6504 Vulnerability in maven package com.opensymphony:xwork CWE-20 CWE-20 Critical CVE-2008-6504 Vulnerability in maven package opensymphony:xwork CWE-20 CWE-20 Critical CVE-2008-6504 Vulnerability in maven package org.apache.struts:struts2-core CWE-20 CWE-20 Critical CVE-2008-6681 Vulnerability in maven package org.apache.geronimo.plugins:dojo CWE-79 CWE-79 Critical CVE-2008-6681 Vulnerability in maven package org.dojotoolkit:dojo CWE-79 CWE-79 Critical CVE-2009-0217 Vulnerability in maven package org.apache.santuario:xmlsec Critical CVE-2009-0580 Vulnerability in maven package org.apache.tomcat:catalina CWE-200 CWE-200 Critical CVE-2009-0781 Vulnerability in maven package org.apache.tomcat:catalina CWE-79 CWE-79 Critical CVE-2009-0781 Vulnerability in maven package tomcat:catalina CWE-79 CWE-79 Critical CVE-2009-0783 Vulnerability in maven package org.apache.tomcat:catalina CWE-200 CWE-200 Medium CVE-2009-1190 Vulnerability in maven package org.springframework:spring-core CWE-399 CWE-399 Critical CVE-2009-2625 Vulnerability in maven package xerces:xercesimpl Critical CVE-2009-2901 Vulnerability in maven package org.apache.tomcat:catalina CWE-264 CWE-264 Critical CVE-2009-2901 Vulnerability in maven package tomcat:catalina CWE-264 CWE-264 Critical CVE-2009-2902 Vulnerability in maven package org.apache.tomcat:catalina CWE-22 CWE-22 Critical CVE-2009-2902 Vulnerability in maven package tomcat:catalina CWE-22 CWE-22 Critical CVE-2009-3579 Vulnerability in maven package org.mortbay.jetty:jetty CWE-79 CWE-79 Critical CVE-2009-4269 Vulnerability in maven package org.apache.derby:derby CWE-310 CWE-310 Critical CVE-2009-4611 Vulnerability in maven package org.mortbay.jetty:jetty CWE-20 CWE-20 Critical CVE-2009-4875 Vulnerability in maven package net.fckeditor:java-core CWE-399 CWE-399 Critical CVE-2010-0684 Vulnerability in maven package org.apache.activemq:activemq-web CWE-79 CWE-79 Critical CVE-2010-1157 Vulnerability in maven package org.apache.tomcat:catalina CWE-200 CWE-200 Critical CVE-2010-1157 Vulnerability in maven package tomcat:catalina CWE-200 CWE-200 Critical CVE-2010-1244 Vulnerability in maven package org.apache.activemq:activemq-web CWE-352 CWE-352 Critical CVE-2010-1330 Vulnerability in maven package org.jruby.jcodings:jcodings CWE-79 CWE-79 Critical CVE-2010-1330 Vulnerability in maven package org.jruby:jruby CWE-79 CWE-79 Critical CVE-2010-1587 Vulnerability in maven package org.apache.activemq:apache-activemq CWE-20 CWE-20 Critical CVE-2010-1622 Vulnerability in maven package org.springframework:spring CWE-94 CWE-94 Critical CVE-2010-1622 Vulnerability in maven package org.springframework:spring-beans CWE-94 CWE-94 Critical CVE-2010-1622 Vulnerability in maven package org.springframework:spring-core CWE-94 CWE-94 Critical CVE-2010-1632 Vulnerability in maven package org.apache.axis2:axis2 CWE-20 CWE-20 Critical CVE-2010-1870 Vulnerability in maven package com.opensymphony:xwork-core Critical CVE-2010-1870 Vulnerability in maven package org.apache.struts:struts2-core Critical CVE-2010-2057 Vulnerability in maven package org.apache.myfaces.core:myfaces-impl CWE-310 CWE-310 Critical CVE-2010-2057 Vulnerability in maven package org.apache.myfaces.shared:myfaces-shared-core CWE-310 CWE-310 Critical CVE-2010-2057 Vulnerability in maven package org.apache.myfaces.shared:myfaces-shared-impl CWE-310 CWE-310 Critical CVE-2010-2057 Vulnerability in maven package org.apache.myfaces.trinidad:trinidad-impl CWE-310 CWE-310 Critical CVE-2010-2076 Vulnerability in maven package org.apache.axis2:axis2-kernel CWE-829 CWE-829 Critical CVE-2010-2076 Vulnerability in maven package org.apache.cxf:cxf-bundle CWE-829 CWE-829 Critical CVE-2010-2076 Vulnerability in maven package org.apache.cxf:cxf-bundle-jaxrs CWE-829 CWE-829 Critical CVE-2010-2076 Vulnerability in maven package org.apache.cxf:cxf-bundle-minimal CWE-829 CWE-829 Critical CVE-2010-2076 Vulnerability in maven package org.apache.cxf:cxf-common-utilities CWE-829 CWE-829 Critical CVE-2010-2086 Vulnerability in maven package org.apache.myfaces.core:myfaces-core-project CWE-79 CWE-79 Critical CVE-2010-2103 Vulnerability in maven package org.apache.axis2:axis2 CWE-79 CWE-79 Critical CVE-2010-2227 Vulnerability in maven package org.apache.tomcat:coyote CWE-119 CWE-119 Critical CVE-2010-2227 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-119 CWE-119 Critical CVE-2010-2227 Vulnerability in maven package tomcat:tomcat-coyote CWE-119 CWE-119 Critical CVE-2010-2232 Vulnerability in maven package org.apache.derby:derby CWE-284 CWE-284 High CVE-2010-2245 Vulnerability in maven package org.apache.wink:wink-assembly-aggregatejar-osgi CWE-611 CWE-611 High CVE-2010-2245 Vulnerability in maven package org.apache.wink:wink-server CWE-611 CWE-611 High CVE-2010-2273 Vulnerability in npm package dojo CWE-79 CWE-79 Critical CVE-2010-2275 Vulnerability in npm package dojo CWE-79 CWE-79 Critical CVE-2010-2276 Vulnerability in npm package dojo CWE-16 CWE-16 Critical CVE-2010-3449 Vulnerability in maven package org.codehaus.redback:redback-system CWE-352 CWE-352 Critical CVE-2010-3700 Vulnerability in maven package org.springframework.security:spring-security-core CWE-264 CWE-264 Critical 12345...118 1 / 118
