| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-43720 | Apache Superset: Improper rendering of user input | Apache Software Foundation | Apache Superset | 中危 | - | 2023-01-16 10:10:42 | Deep Dive |
| CVE-2022-43719 | Apache Superset: Cross Site Request Forgery (CSRF) on accept, request access API | Apache Software Foundation | Apache Superset | 高危 | - | 2023-01-16 10:10:27 | Deep Dive |
| CVE-2022-43718 | Apache Superset: Cross-Site Scripting vulnerability on upload forms | Apache Software Foundation | Apache Superset | 中危 | - | 2023-01-16 10:10:05 | Deep Dive |
| CVE-2022-43717 | Apache Superset: Cross-Site Scripting on dashboards | Apache Software Foundation | Apache Superset | 中危 | - | 2023-01-16 10:08:05 | Deep Dive |
| CVE-2023-22602 | Apache Shiro before 1.11.0, when used with Spring Boot 2.6+, may allow authentication bypass through a specially crafted HTTP request | Apache Software Foundation | Apache Shiro | 高危 | - | 2023-01-14 09:33:40 | Deep Dive |
| CVE-2022-46769 | Apache Sling App CMS: XSS in CMS Site Group Detail | Apache Software Foundation | Apache Sling App CMS | 中危 | - | 2023-01-09 10:14:57 | Deep Dive |
| CVE-2022-45935 | Apache James server: Temporary File Information Disclosure | Apache Software Foundation | Apache James server | 中危 | - | 2023-01-06 09:33:30 | Deep Dive |
| CVE-2022-45787 | Apache James MIME4J: Temporary File Information Disclosure in MIME4J TempFileStorageProvider | Apache Software Foundation | Apache James MIME4J | 中危 | - | 2023-01-06 09:31:40 | Deep Dive |
| CVE-2022-45875 | Apache DolphinScheduler: Remote command execution Vulnerability in script alert plugin | Apache Software Foundation | Apache DolphinScheduler | 超危 | - | 2023-01-04 14:57:45 | Deep Dive |
| CVE-2022-45143 | Apache Tomcat: JsonErrorReportValve escaping | Apache Software Foundation | Apache Tomcat | 高危 | - | 2023-01-03 18:12:28 | Deep Dive |
| CVE-2021-32824 | Regular expression Denial of Service in MooTools | Apache | Dubbo | Critical | 9.8 | 2023-01-03 00:00:00 | Deep Dive |
| CVE-2022-44621 | Apache Kylin: Command injection by Diagnosis Controller | Apache Software Foundation | Apache Kylin | 超危 | - | 2022-12-30 10:31:53 | Deep Dive |
| CVE-2022-43396 | Apache Kylin: Command injection by Useless configuration | Apache Software Foundation | Apache Kylin | 高危 | - | 2022-12-30 10:30:46 | Deep Dive |
| CVE-2022-45347 | Apache ShardingSphere-Proxy: MySQL authentication bypass | Apache Software Foundation | Apache ShardingSphere-Proxy | 超危 | - | 2022-12-22 10:47:45 | Deep Dive |
| CVE-2022-40145 | Apache Karaf: JDBC JAAS LDAP injection | Apache Software Foundation | Apache Karaf | 超危 | - | 2022-12-21 15:23:43 | Deep Dive |
| CVE-2022-46421 | Apache Airflow Hive Provider: Hive Provider RCE vulnerability with hive_cli_params | Apache Software Foundation | Apache Airflow Hive Provider | 超危 | - | 2022-12-20 10:20:39 | Deep Dive |
| CVE-2022-40743 | Apache Traffic Server: Security issues with the xdebug plugin | Apache Software Foundation | Apache Traffic Server | 中危 | - | 2022-12-19 11:06:14 | Deep Dive |
| CVE-2022-37392 | Apache Traffic Server: Improperly reading the client requests | Apache Software Foundation | Apache Traffic Server | 中危 | - | 2022-12-19 10:59:06 | Deep Dive |
| CVE-2022-32749 | Apache Traffic Server: Improperly handled requests can cause crashes in specific plugins | Apache Software Foundation | Apache Traffic Server | 高危 | - | 2022-12-19 10:51:57 | Deep Dive |
| CVE-2022-47500 | Apache Helix: Open redirect | Apache Software Foundation | Apache Helix | 中危 | - | 2022-12-19 10:03:41 | Deep Dive |