Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2013-2165 Vulnerability in maven package org.richfaces.framework:richfaces-impl CWE-264 CWE-264 Critical CVE-2013-2165 Vulnerability in maven package org.richfaces.framework:richfaces-impl-jsf2 CWE-264 CWE-264 Critical CVE-2013-2165 Vulnerability in maven package org.richfaces:richfaces CWE-264 CWE-264 Critical CVE-2013-2172 Vulnerability in maven package org.apache.santuario:xmlsec CWE-310 CWE-310 Critical CVE-2013-2186 Vulnerability in maven package commons-fileupload:commons-fileupload CWE-20 CWE-20 Critical CVE-2013-2187 Vulnerability in maven package org.apache.archiva:archiva CWE-79 CWE-79 Critical CVE-2013-2192 Vulnerability in maven package org.apache.hadoop:hadoop-common CWE-287 CWE-287 Critical CVE-2013-2192 Vulnerability in maven package org.apache.hadoop:hadoop-core CWE-287 CWE-287 Critical CVE-2013-2193 Vulnerability in maven package org.apache.hbase:hbase CWE-287 CWE-287 Critical CVE-2013-2248 Vulnerability in maven package org.apache.struts:struts2-core CWE-20 CWE-20 Critical CVE-2013-2251 Vulnerability in maven package org.apache.struts:struts2-core CWE-74 CWE-74 Critical CVE-2013-2254 Vulnerability in maven package org.apache.sling:org.apache.sling.servlets.post CWE-119 CWE-119 Critical CVE-2013-3060 Vulnerability in maven package org.apache.activemq:activemq-core CWE-287 CWE-287 Critical CVE-2013-3300 Vulnerability in maven package net.liftweb:lift-json_2.9.1 CWE-119 CWE-119 Critical CVE-2013-3827 Vulnerability in maven package com.sun.faces:jsf-impl Critical CVE-2013-4002 Vulnerability in maven package xerces:xercesimpl Critical CVE-2013-4112 Vulnerability in maven package org.jgroups:jgroups CWE-200 CWE-200 Critical CVE-2013-4152 Vulnerability in maven package org.springframework:spring-oxm CWE-264 CWE-264 Critical CVE-2013-4152 Vulnerability in maven package org.springframework:spring-web CWE-264 CWE-264 Critical CVE-2013-4204 Vulnerability in maven package com.google.gwt:gwt-user CWE-79 CWE-79 Critical CVE-2013-4221 Vulnerability in maven package org.restlet:org.restlet CWE-16 CWE-16 Critical CVE-2013-4271 Vulnerability in maven package org.restlet:org.restlet CWE-502 CWE-502 Critical CVE-2013-4286 Vulnerability in maven package org.apache.tomcat:coyote CWE-20 CWE-20 Critical CVE-2013-4286 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-20 CWE-20 Critical CVE-2013-4286 Vulnerability in maven package tomcat:tomcat-coyote CWE-20 CWE-20 Critical CVE-2013-4310 Vulnerability in maven package org.apache.struts:struts2-core CWE-264 CWE-264 Critical CVE-2013-4316 Vulnerability in maven package org.apache.struts:struts2-core CWE-16 CWE-16 Critical CVE-2013-4322 Vulnerability in maven package org.apache.tomcat:coyote CWE-20 CWE-20 Critical CVE-2013-4322 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-20 CWE-20 Critical CVE-2013-4322 Vulnerability in maven package tomcat:tomcat-coyote CWE-20 CWE-20 Critical CVE-2013-4330 Vulnerability in maven package org.apache.camel:camel-core CWE-94 CWE-94 Critical CVE-2013-4366 Vulnerability in maven package org.apache.httpcomponents:httpclient CWE-20 CWE-20 Critical CVE-2013-4378 Vulnerability in maven package net.bull.javamelody:javamelody-core CWE-79 CWE-79 Critical CVE-2013-4390 Vulnerability in maven package org.apache.sling:org.apache.sling.auth.core CWE-20 CWE-20 Critical CVE-2013-4444 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-94 CWE-94 Critical CVE-2013-4444 Vulnerability in maven package org.apache.tomcat:tomcat-util CWE-94 CWE-94 Critical CVE-2013-4517 Vulnerability in maven package org.apache.santuario:xmlsec CWE-399 CWE-399 Critical CVE-2013-4517 Vulnerability in maven package xml-security:xmlsec CWE-399 CWE-399 Critical CVE-2013-4590 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-200 CWE-200 Critical CVE-2013-4590 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-jasper CWE-200 CWE-200 Critical CVE-2013-4590 Vulnerability in maven package org.apache.tomcat:catalina CWE-200 CWE-200 Critical CVE-2013-4590 Vulnerability in maven package org.apache.tomcat:catalina-ant CWE-200 CWE-200 Critical CVE-2013-4590 Vulnerability in maven package org.apache.tomcat:jasper CWE-200 CWE-200 Critical CVE-2013-4590 Vulnerability in maven package org.apache.tomcat:tomcat-catalina CWE-200 CWE-200 Critical CVE-2013-4590 Vulnerability in maven package org.apache.tomcat:tomcat-jasper CWE-200 CWE-200 Critical CVE-2013-4660 Vulnerability in npm package js-yaml CWE-20 CWE-20 Critical CVE-2013-4940 Vulnerability in npm package yui CWE-79 CWE-79 Critical CVE-2013-4942 Vulnerability in maven package org.webjars:yui CWE-79 CWE-79 Critical CVE-2013-4942 Vulnerability in npm package yui CWE-79 CWE-79 Critical CVE-2013-5679 Vulnerability in maven package org.owasp.esapi:esapi CWE-310 CWE-310 Critical CVE-2013-5823 Vulnerability in maven package org.apache.santuario:xmlsec Critical CVE-2013-5855 Vulnerability in maven package com.sun.faces:jsf-impl CWE-79 CWE-79 Critical CVE-2013-5855 Vulnerability in maven package javax.faces:jsf-impl CWE-79 CWE-79 Critical CVE-2013-5855 Vulnerability in maven package org.glassfish:javax.faces CWE-79 CWE-79 Critical CVE-2013-5960 Vulnerability in maven package org.owasp.esapi:esapi CWE-310 CWE-310 Critical CVE-2013-5966 Vulnerability in maven package org.zkoss.common:zweb CWE-79 CWE-79 Critical CVE-2013-6235 Vulnerability in maven package com.jamonapi:jamon CWE-79 CWE-79 Critical CVE-2013-6348 Vulnerability in maven package org.apache.struts:struts2-config-browser-plugin CWE-79 CWE-79 Critical CVE-2013-6357 Vulnerability in maven package tomcat:catalina CWE-352 CWE-352 Critical CVE-2013-6372 Vulnerability in maven package org.jenkins-ci.plugins:subversion CWE-255 CWE-255 Critical CVE-2013-6373 Vulnerability in maven package org.jenkins-ci.plugins:exclusion CWE-264 CWE-264 Critical CVE-2013-6374 Vulnerability in maven package com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer CWE-79 CWE-79 Critical CVE-2013-6393 Vulnerability in npm package libyaml CWE-119 CWE-119 Critical CVE-2013-6397 Vulnerability in maven package org.apache.solr:solr-core CWE-22 CWE-22 Critical CVE-2013-6397 Vulnerability in maven package org.apache.solr:solr-velocity CWE-22 CWE-22 Critical CVE-2013-6407 Vulnerability in maven package org.apache.solr:solr-core Critical CVE-2013-6408 Vulnerability in maven package org.apache.solr:solr-core Critical CVE-2013-6429 Vulnerability in maven package org.springframework:spring-web CWE-352 CWE-352 Critical CVE-2013-6440 Vulnerability in maven package org.opensaml:opensaml CWE-200 CWE-200 Critical CVE-2013-6440 Vulnerability in maven package org.opensaml:xmltooling CWE-200 CWE-200 Critical CVE-2013-6447 Vulnerability in maven package org.jboss.seam:jboss-seam CWE-200 CWE-200 Critical CVE-2013-6447 Vulnerability in maven package org.jboss.seam:jboss-seam-remoting CWE-200 CWE-200 Critical CVE-2013-6448 Vulnerability in maven package org.jboss.seam:jboss-seam-remoting CWE-264 CWE-264 Critical CVE-2013-6468 Vulnerability in maven package org.drools:drools-workbench-models-test-scenarios CWE-94 CWE-94 Critical CVE-2013-7250 Vulnerability in maven package org.projectforge:projectforge-webapp CWE-79 CWE-79 Critical 1...5678...47 6 / 47
