Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Tag: ofbiz Clear
ID Title
CVE-2026-50223 Code Injection in apache (CVE-2026-50223)
code injection in apache (CVE-2026-50223). Successful exploitation can lead to full system takeover.
CVE-2026-47342 Vulnerability in apache (CVE-2026-47342)
vulnerability in apache (CVE-2026-47342). Successful exploitation can lead to full system takeover.
CVE-2026-46586 Code Injection in apache (CVE-2026-46586)
code injection in apache (CVE-2026-46586). Successful exploitation can lead to full system takeover.
CVE-2026-45434 Authentication Bypass in apache (CVE-2026-45434)
authentication bypass in apache (CVE-2026-45434). Successful exploitation can lead to full system takeover.
CVE-2026-45187 Vulnerability in apache (CVE-2026-45187)
vulnerability in apache (CVE-2026-45187). Risk of unauthorized operations or information disclosure.
CVE-2026-41919 Vulnerability in apache (CVE-2026-41919)
vulnerability in apache (CVE-2026-41919). Confidential information can be exposed externally.
CVE-2026-35086 Code Injection in apache (CVE-2026-35086)
code injection in apache (CVE-2026-35086). Risk of unauthorized operations or information disclosure.
CVE-2026-31986 Vulnerability in apache (CVE-2026-31986)
vulnerability in apache (CVE-2026-31986). Confidential information can be exposed externally.
CVE-2026-31910 SSRF (Server-Side Request Forgery) in apache (CVE-2026-31910)
SSRF in apache (CVE-2026-31910). Confidential information can be exposed externally.
CVE-2026-31387 Authentication Bypass in apache (CVE-2026-31387)
authentication bypass in apache (CVE-2026-31387). Risk of unauthorized operations or information disclosure.
CVE-2026-31909 Information Disclosure in apache (CVE-2026-31909)
vulnerability in apache (CVE-2026-31909). Confidential information can be exposed externally.
CVE-2026-31906 Cross-Site Scripting (XSS) in apache (CVE-2026-31906)
cross-site scripting in apache (CVE-2026-31906). Risk of unauthorized operations or information disclosure.
CVE-2026-31388 Vulnerability in apache (CVE-2026-31388)
vulnerability in apache (CVE-2026-31388). Risk of unauthorized operations or information disclosure.
CVE-2026-31380 Vulnerability in apache (CVE-2026-31380)
vulnerability in apache (CVE-2026-31380). Risk of unauthorized operations or information disclosure.
CVE-2026-31379 Path Traversal in apache (CVE-2026-31379)
path traversal in apache (CVE-2026-31379). Risk of unauthorized operations or information disclosure.
CVE-2026-31378 Vulnerability in apache (CVE-2026-31378)
vulnerability in apache (CVE-2026-31378). Risk of unauthorized operations or information disclosure.
CVE-2026-29226 SSRF (Server-Side Request Forgery) in apache (CVE-2026-29226)
SSRF in apache (CVE-2026-29226). Risk of unauthorized operations or information disclosure.
CVE-2026-29220 Path Traversal in apache (CVE-2026-29220)
path traversal in apache (CVE-2026-29220). Risk of unauthorized operations or information disclosure.
CVE-2026-29207 Vulnerability in apache (CVE-2026-29207)
vulnerability in apache (CVE-2026-29207). Risk of unauthorized operations or information disclosure.
CVE-2024-45195 KEV [KEV] Vulnerability in Apache ofbiz (CVE-2024-45195)
vulnerability in Apache ofbiz (CVE-2024-45195). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38856 KEV [KEV] Authorization Flaw in Apache ofbiz (CVE-2024-38856)
vulnerability in Apache ofbiz (CVE-2024-38856). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-32113 KEV [KEV] Path Traversal in Apache ofbiz (CVE-2024-32113)
path traversal in Apache ofbiz (CVE-2024-32113). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2012-1622 Vulnerability in apache (CVE-2012-1622)
vulnerability in apache (CVE-2012-1622). Successful exploitation can lead to full system takeover.
CVE-2016-6800 Cross-Site Scripting (XSS) in apache (CVE-2016-6800)
cross-site scripting in apache (CVE-2016-6800). Risk of unauthorized operations or information disclosure.
CVE-2016-4462 Vulnerability in apache (CVE-2016-4462)
vulnerability in apache (CVE-2016-4462). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →