Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2014-6071 Vulnerability in npm package jquery CWE-79 CWE-79 High CVE-2014-6393 Vulnerability in maven package org.webjars.npm:express CWE-79 CWE-79 High CVE-2014-6393 Vulnerability in npm package express CWE-79 CWE-79 High CVE-2014-6394 Vulnerability in maven package org.webjars.npm:send CWE-22 CWE-22 Critical CVE-2014-6394 Vulnerability in npm package send CWE-22 CWE-22 Critical CVE-2014-6439 Vulnerability in maven package org.elasticsearch:elasticsearch CWE-79 CWE-79 Critical CVE-2014-7191 Vulnerability in maven package org.webjars.bower:qs CWE-399 CWE-399 Critical CVE-2014-7191 Vulnerability in maven package org.webjars.npm:qs CWE-399 CWE-399 Critical CVE-2014-7191 Vulnerability in maven package org.webjars:qs CWE-399 CWE-399 Critical CVE-2014-7191 Vulnerability in npm package qs CWE-399 CWE-399 Critical CVE-2014-7192 Vulnerability in npm package syntax-error CWE-94 CWE-94 Critical CVE-2014-7193 Vulnerability in npm package crumb CWE-284 CWE-284 Critical CVE-2014-7205 Vulnerability in npm package bassmaster CWE-94 CWE-94 Critical CVE-2014-7808 Vulnerability in maven package org.apache.wicket:wicket-core CWE-310 CWE-310 High CVE-2014-7808 Vulnerability in maven package org.apache.wicket:wicket-util CWE-310 CWE-310 High CVE-2014-7809 Vulnerability in maven package org.apache.struts:struts2-core CWE-352 CWE-352 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-el CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-jasper CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:el-api CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:jasper CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:tomcat-el-api CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:tomcat-jasper CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.mortbay.jasper:apache-el CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.mortbay.jasper:apache-jsp CWE-284 CWE-284 Critical CVE-2014-7816 Vulnerability in maven package io.undertow:undertow-core CWE-22 CWE-22 Critical CVE-2014-7816 Vulnerability in maven package io.undertow:undertow-servlet CWE-22 CWE-22 Critical CVE-2014-7827 Vulnerability in maven package org.picketlink:picketlink-federation CWE-264 CWE-264 Critical CVE-2014-7839 Vulnerability in maven package org.jboss.resteasy:resteasy-jaxrs CWE-20 CWE-20 Critical CVE-2014-8110 Vulnerability in maven package org.apache.activemq:activemq-web-console CWE-79 CWE-79 Critical CVE-2014-8114 Vulnerability in maven package org.uberfire:uberfire-server CWE-264 CWE-264 Critical CVE-2014-8115 Vulnerability in maven package org.kie:kie-drools-wb-distribution-wars CWE-264 CWE-264 Critical CVE-2014-8122 Vulnerability in maven package org.jboss.weld:weld-core CWE-362 CWE-362 Critical CVE-2014-8122 Vulnerability in maven package org.jboss.weld:weld-core-impl CWE-362 CWE-362 Critical CVE-2014-8125 Vulnerability in maven package org.drools:drools-core Critical CVE-2014-8152 Vulnerability in maven package org.apache.santuario:xmlsec CWE-254 CWE-254 Critical CVE-2014-8349 Vulnerability in maven package com.liferay.portal:portal-web CWE-79 CWE-79 Critical CVE-2014-9515 Vulnerability in maven package com.github.dozermapper:dozer-parent CWE-502 CWE-502 Critical CVE-2014-9527 Vulnerability in maven package org.apache.poi:poi-scratchpad CWE-399 CWE-399 Critical CVE-2014-9634 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-254 CWE-254 Medium CVE-2014-9635 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-254 CWE-254 Medium CVE-2014-9682 Vulnerability in npm package dns-sync CWE-77 CWE-77 Critical CVE-2014-9772 Vulnerability in npm package validator CWE-79 CWE-79 High CVE-2014-9970 Vulnerability in maven package org.jasypt:jasypt CWE-200 CWE-200 High CVE-2014-10064 Vulnerability in maven package org.webjars.bower:qs CWE-399 CWE-399 High CVE-2014-10064 Vulnerability in maven package org.webjars.npm:qs CWE-399 CWE-399 High CVE-2014-10064 Vulnerability in maven package org.webjars:qs CWE-399 CWE-399 High CVE-2014-10064 Vulnerability in npm package qs CWE-399 CWE-399 High CVE-2014-10065 Vulnerability in maven package org.webjars:remarkable CWE-79 CWE-79 High CVE-2014-10065 Vulnerability in npm package remarkable CWE-79 CWE-79 High CVE-2014-10066 Vulnerability in npm package fancy-server CWE-22 CWE-22 High CVE-2014-10067 Vulnerability in npm package paypal-ipn CWE-287 CWE-287 Medium CVE-2014-10068 Vulnerability in npm package inert CWE-22 CWE-22 High CVE-2014-125087 Vulnerability in maven package com.jamesmurty.utils:java-xmlbuilder CWE-611 CWE-611 Critical CVE-2015-0201 Vulnerability in maven package org.springframework:spring-websocket CWE-254 CWE-254 Critical CVE-2015-0225 Vulnerability in maven package org.apache.cassandra:cassandra-all CWE-77 CWE-77 Critical CVE-2015-0226 Vulnerability in maven package org.apache.ws.security:wss4j CWE-327 CWE-327 High CVE-2015-0226 Vulnerability in maven package org.apache.wss4j:wss4j-ws-security-dom CWE-327 CWE-327 High CVE-2015-0227 Vulnerability in maven package org.apache.ws.security:wss4j CWE-264 CWE-264 Critical CVE-2015-0227 Vulnerability in maven package org.apache.wss4j:wss4j-ws-security-dom CWE-264 CWE-264 Critical CVE-2015-0250 Vulnerability in maven package batik:batik-dom Critical CVE-2015-0250 Vulnerability in maven package batik:batik-transcoder Critical CVE-2015-0250 Vulnerability in maven package org.apache.xmlgraphics:batik-dom Critical CVE-2015-0250 Vulnerability in maven package org.apache.xmlgraphics:batik-transcoder Critical CVE-2015-0250 Vulnerability in maven package org.eclipse.birt.runtime.3_7_1:org.apache.batik.dom Critical CVE-2015-0250 Vulnerability in maven package org.eclipse.birt.runtime:org.apache.batik.dom Critical CVE-2015-0254 Vulnerability in maven package javax.servlet.jsp.jstl:jstl Critical CVE-2015-0254 Vulnerability in maven package javax.servlet:jstl Critical CVE-2015-0254 Vulnerability in maven package jstl:jstl Critical CVE-2015-0254 Vulnerability in maven package org.apache.taglibs:taglibs-standard Critical CVE-2015-0254 Vulnerability in maven package org.apache.taglibs:taglibs-standard-impl Critical CVE-2015-0254 Vulnerability in maven package taglibs:standard Critical CVE-2015-0263 Vulnerability in maven package org.apache.camel:camel-core Critical CVE-2015-0264 Vulnerability in maven package org.apache.camel:camel-core Critical CVE-2015-0265 Vulnerability in maven package org.apache.ranger:ranger CWE-79 CWE-79 High 1...9101112...118 10 / 118
