Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2007-5333 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-200 CWE-200 Critical CVE-2007-5333 Vulnerability in maven package tomcat:tomcat-coyote CWE-200 CWE-200 Critical CVE-2013-7285 Vulnerability in maven package com.thoughtworks.xstream:xstream CWE-78 CWE-78 Critical CVE-2013-7285 Vulnerability in maven package org.jbehave:jbehave-core CWE-78 CWE-78 Critical CVE-2017-11467 Vulnerability in maven package com.orientechnologies:orientdb-core CWE-269 CWE-269 Critical CVE-2017-18214 Vulnerability in maven package org.webjars.bower:moment CWE-400 CWE-400 High CVE-2017-18214 Vulnerability in maven package org.webjars.bowergithub.moment:moment CWE-400 CWE-400 High CVE-2017-18214 Vulnerability in maven package org.webjars.npm:moment CWE-400 CWE-400 High CVE-2017-18214 Vulnerability in npm package moment CWE-400 CWE-400 High CVE-2018-15756 Vulnerability in maven package org.springframework:spring-web High CVE-2021-23452 Vulnerability in npm package x-assign CWE-1321 CWE-1321 Critical CVE-2021-28860 Vulnerability in npm package mixme CWE-1321 CWE-1321 Critical CVE-2022-21169 Vulnerability in npm package express-xss-sanitizer CWE-1321 CWE-1321 High CVE-2023-42503 Vulnerability in maven package org.apache.commons:commons-compress Medium
