Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Keycloak KeycloakKeycloak-services: blind server-side request forgery (ssrf) via http redirect handling in keycloak

Risk 21
Severity
5.8
EPSS
0.03%
First published (updated )
CVE-2026-4366

maven/org.keycloak:keycloak-servicesKeycloak: vulnerable redirect uri validation results in open redirec

Risk 39
Severity
6.8
EPSS
0.24%
First published (updated )
CVE-2024-8883

maven/org.keycloak:keycloak-servicesKeycloak: potential bypass of brute force protection

Risk 42
Severity
6.5
First published (updated )
CVE-2024-4629

Fortinet FortiSIEMOpenSSH Terrapin attack (CVE-2023-48795)

Risk 37
Severity
6
First published (updated )
CVE-2023-48795

redhat Single Sign-onKeycloak: reflected xss via wildcard in oidc redirect_uri

Risk 26
Severity
5.4
EPSS
0.10%
First published (updated )
CVE-2023-6134
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat Keycloak Node.js AdapterA flaw was found in the Keycloak Node.js Adapter. This flaw allows an attacker to benefit from an Op…

Risk 38
Severity
6.1
First published (updated )
CVE-2022-2237

redhat/rh-sso7-keycloakA flaw was found in keycloak, where the default ECP binding flow allows other authentication flows t…

Risk 54
Severity
6.8
First published (updated )
CVE-2021-3827

maven/org.keycloak:keycloak-servicesInput Validation

Risk 28
Severity
5.3
First published (updated )
CVE-2021-3754

maven/org.keycloak:keycloak-coreRe-authentication is missing while updating the password. This may cause account takeover if any att…

Risk 64
Severity
6.8
First published (updated )
CVE-2021-20262

maven/org.keycloak:keycloak-coreClient registration endpoints should not allow fetching information about public clients without aut…

Risk 39
Severity
6.5
First published (updated )
CVE-2020-27838
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/eap7-wildflyA vulnerability was found in Wildfly's EJB Client, where accumulation of some specific EJB transacti…

Risk 40
Severity
6.5
First published (updated )
CVE-2020-14297

redhat/eap7-wildflyA vulnerability was found in Wildfly's EJB where SessionOpenInvocations may not be removed properly …

Risk 39
Severity
6.5
First published (updated )
CVE-2020-14307

redhat/eap7-activemq-artemisA flaw was found in the JBoss EAP, where the authentication configuration is set up using a legacy S…

Risk 39
Severity
6.5
First published (updated )
CVE-2020-14299

redhat/RHSSOXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2020-10748

redhat/eap7-apache-cxfA vulnerability was found in Undertow, where parsing invalid http request may cause http request smu…

Risk 40
Severity
6.5
First published (updated )
CVE-2020-10719
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat JBoss Enterprise Application PlatformHibernate-validator: rendering of invalid html with safehtml leads to html injection and xss

Risk 40
Severity
6.1
First published (updated )
CVE-2023-1932

maven/org.keycloak:keycloak-parentA flaw was found in Keycloak 7.0.1. A logged in user can do an account email enumeration attack.

Risk 22
Severity
4
First published (updated )
CVE-2020-1717

redhat/eap7-hal-consoleXSS

Risk 36
Severity
4.8
First published (updated )
CVE-2020-10687

redhat WildFly CoreIt was found that Wildfly users had default user permissions set incorrectly. A malicious user could…

Risk 37
Severity
5.2
First published (updated )
CVE-2019-14838

Oracle Retail Price ManagementXSS

Risk 42
Severity
6.5
First published (updated )
CVE-2019-10219
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat JBoss Enterprise Application PlatformSQL Injection

Risk 40
Severity
6.5
First published (updated )
CVE-2019-14900

redhat JBoss Enterprise Application PlatformXSS

Risk 34
Severity
5.4
First published (updated )
CVE-2018-10934

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203