Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Apache OFBizApache OFBiz: Improper Authorization in Scheduled Job Creation Allows Low-Privileged Users to Submit System Jobs

Risk 42
Severity
6.5
First published (updated )
CVE-2026-45187

Apache Apache OFBizApache OFBiz: Authenticated Remote Code Execution via Unsafe Template Expansion in email services

Risk 42
Severity
6.5
First published (updated )
CVE-2026-35086

Apache OFBizApache OFBiz: Reflected XSS via Improper HTML Attribute Escaping in Layered-Modal Dialog Parameters

Risk 40
Severity
6.1
First published (updated )
CVE-2026-31906

Apache OFBizApache OFBiz: Cross-Tenant Data Exposure via Program Export Feature

Risk 28
Severity
5.3
First published (updated )
CVE-2026-31388

Apache Apache OFBizApache OFBiz: Cookie Manipulation Allows Authenticated JWT Forgery and Account Impersonation

Risk 28
Severity
5.3
First published (updated )
CVE-2026-31387
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache Apache OFBizApache OFBiz: FreeMarker SSTI via Duplicate Parameter Sanitization Bypass

Risk 42
Severity
6.5
First published (updated )
CVE-2026-31380

Apache OFBizApache OFBiz: Path Traversal and File Upload Validation Bypass Leading to Arbitrary File Write, Stored XSS and RCE in Catalog Manager

Risk 40
Severity
6.1
First published (updated )
CVE-2026-31379

Apache Apache OFBizApache OFBiz: JSON Attribute Override and URL Allowlist Bypass Leads to Remote Code Execution

Risk 42
Severity
6.5
First published (updated )
CVE-2026-31378

Apache OFBizApache OFBiz: Low-Privilege SSTI Leading to RCE in the Content Component

Risk 40
Severity
6.5
First published (updated )
CVE-2026-29207

Apache OFBizApache OFBiz: Low-Privilege LFI in Content Component

Risk 40
Severity
6.5
First published (updated )
CVE-2026-29220
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache OFBizApache OFBiz: Stored XSS Vulnerability

Risk 28
Severity
6.1
EPSS
0.03%
First published (updated )
CVE-2025-30676

Apache OFBizApache OFBiz: Path traversal or file inclusion

Risk 20
Severity
5.3
EPSS
0.05%
First published (updated )
CVE-2024-23946

Apache OFBizApache OFBiz: Execution of Solr plugin queries without authentication

Risk 27
Severity
5.3
First published (updated )
CVE-2023-46819

Apache OFBizUnauth Stored XSS vulnerability in the Birt plugin of Apache OFBiz

Risk 34
Severity
5.4
First published (updated )
CVE-2022-25370

Apache OFBizXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2020-9496
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache OFBizIDOR vulnerability in the order processing feature from ecommerce component of Apache OFBiz before 1…

Risk 27
Severity
5.3
First published (updated )
CVE-2020-13923

Apache OFBizXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2020-1943

Apache OFBizan unauthenticated user could get access to information of some backend screens by invoking setSessi…

Risk 27
Severity
5.3
First published (updated )
CVE-2019-12426

Apache OFBizXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2019-10073

Apache OFBizXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2016-6800
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache OFBizXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2015-3268

Apache OFBizXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2014-0232

Apache OFBizXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2012-1621

Apache OFBizXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2013-2137

Apache OFBizXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2010-0432
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache OFBizXSS

Risk 47
Severity
6.8
First published (updated )
CVE-2006-6589

Apache OFBizXSS

Risk 47
Severity
6.8
First published (updated )
CVE-2006-6587

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203