Latest vulnerabilities for "apache apisix"

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Trending

Versions

Apache Apache APISIXApache APISIX: forward auth plugin allows header injection

Apache APISIXApache APISIX: Plugin tencent-cloud-cls log export uses plaintext HTTP

Apache APISIXApache APISIX: Openid-connect `tls_verify` field is disabled by default

oss-secCVE-2026-31908: Apache APISIX: forward auth plugin allows header injection

oss-secCVE-2026-31924: Apache APISIX: Plugin tencent-cloud-cls log export uses plaintext HTTP

Don't miss critical vulnerabilities

Apache APISIX Java Plugin RunnerApache APISIX Java Plugin Runner: Local listening file permissions in APISIX plugin runner allow a local attacker to elevate privileges

CVE-2024-32638: Apache APISIX: Forward-Auth Request Smuggling

Apache APISIXApache APISIX: Forward-Auth Request Smuggling

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

Apache APISIXapisix/jwt-auth may leak secrets in error response

Don't miss critical vulnerabilities

Apache APISIXApache APISIX: the body_schema check in request-validation plugin can be bypassed

Apache APISIXApache APISIX Authentication Bypass Vulnerability

Apache APISIXPath traversal in request_uri variable

Apache APISIXIn Apache APISIX, the user enabled the Admin API and deleted the Admin API access IP restriction rul…

Company

Resources

Contact