Browse CVEs
11,256 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2018-1000822 | codelibs fess version before commit faa265b contains a XM... | Critical | 10.0 | Medium Risk | Patched | 20-Dec-18 |
| CVE-2018-1000823 | exist version <= 5.0.0-RC4 contains a XML External Entity... | Critical | 10.0 | Medium Risk | Patched | 20-Dec-18 |
| CVE-2018-1000854 | esigate.org esigate version 5.2 and earlier contains a CW... | Critical | 9.8 | Medium Risk | Patched | 20-Dec-18 |
| CVE-2018-1000836 | bw-calendar-engine version <= bw-calendar-engine-3.12.0 c... | Critical | 9.0 | Medium Risk | 20-Dec-18 | |
| CVE-2018-1000814 | aio-libs aiohttp-session version 2.6.0 and earlier contai... | Medium | 6.5 | Medium Risk | 20-Dec-18 | |
| CVE-2018-17194 | When a client request to a cluster node was replicated to... | High | 7.5 | Medium Risk | 19-Dec-18 | |
| CVE-2018-17192 | The X-Frame-Options headers were applied inconsistently o... | Medium | 6.5 | Medium Risk | 19-Dec-18 | |
| CVE-2018-11799 | Vulnerability allows a user of Apache Oozie 3.1.3-incubat... | Medium | 6.5 | Medium Risk | 19-Dec-18 | |
| CVE-2018-17193 | The message-page.jsp error page used the value of the HTT... | Medium | 6.1 | Medium Risk | 19-Dec-18 | |
| CVE-2018-20060 | urllib3 before version 1.23 does not remove the Authoriza... | Critical | 9.8 | Medium Risk | Patched | 11-Dec-18 |