Issues
- TemporaryFolder on unix-like systems does not limit access to created filesPRIS-167Ronny Trommer
- Information Disclosure in GuavaPRIS-166Ronny Trommer
- Improper Restriction of XML External Entity Reference in Apache POIPRIS-165Ronny Trommer
- Denial of Service in Google GuavaPRIS-164Ronny Trommer
- Guava vulnerable to insecure use of temporary directoryPRIS-163Ronny Trommer
- Server-Side Request Forgery in RequestOPG-459
- Incorrect Default Permissions in log4jsOPG-458
- tough-cookie Prototype Pollution vulnerabilityOPG-457
- Server-Side Request Forgery in RequestOPG-456
- Got allows a redirect to a UNIX socketOPG-453Scott Theleman
- Server-Side Request Forgery in RequestOPG-452
- Incorrect Default Permissions in log4jsOPG-451
- word-wrap vulnerable to Regular Expression Denial of ServiceOPG-450
- tough-cookie Prototype Pollution vulnerabilityOPG-449
- Observable Discrepancy in Apache KafkaNMS-16121
- Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarationsNMS-16120
- OpenNMS privilege escalation vulnerabilityNMS-16099
- OpenNMS privilege escalation vulnerabilityNMS-16098
- OpenNMS privilege escalation vulnerabilityNMS-16097
- OpenNMS privilege escalation vulnerabilityNMS-16096
- OpenNMS vulnerable to remote code executionNMS-16095
- OpenNMS vulnerable to remote code executionNMS-16094
- Jython Improper Access Restrictions vulnerabilityNMS-16093
- Origin Validation Error in Apache MavenNMS-16080
- Origin Validation Error in Apache MavenNMS-16079
- Origin Validation Error in Apache MavenNMS-16078
- OpenNMS privilege elevation vulnerabilityNMS-16076
- OpenNMS privilege elevation vulnerabilityNMS-16075
- OpenNMS privilege elevation vulnerabilityNMS-16074
- OpenNMS privilege elevation vulnerabilityNMS-16073
- OpenNMS vulnerable to Cross-site ScriptingNMS-16072
- OpenNMS vulnerable to Cross-site ScriptingNMS-16071
- OpenMNS Horizon XXE Injection VulnerabilityNMS-16069Resolved issue: NMS-16069
- NULL Pointer Dereference in Protocol BuffersNMS-16053
- Arbitrary File Creation in AbstractUnArchiverNMS-16041
- Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarationsNMS-16040
- Exposure of sensitive information in follow-redirectsNMS-16021
- Exposure of Sensitive Information to an Unauthorized Actor in follow-redirectsNMS-16020
- qs vulnerable to Prototype PollutionNMS-16019
- Prototype Pollution in minimistNMS-16018
- Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarationsNMS-16015
- Arbitrary Code Execution in gruntNMS-16014
- Cross-site Scripting in karmaNMS-16013
- Open redirect in karmaNMS-16012
- Path Traversal in GruntNMS-16011
- Race Condition in GruntNMS-16010
- Information exposure in FasterXML jackson-databindNMS-16009
- Polymorphic Typing issue in FasterXML jackson-databindNMS-16008
- Polymorphic Typing issue in FasterXML jackson-databindNMS-16007
- Deserialization of Untrusted Data in jackson-databindNMS-16006
50 of 419
