All 8 CVE vulnerabilities found in Apache Sling, with AI-generated Chinese analysis, references, and POCs.
Vendor: Apache Software Foundation
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-25621 | Apache Sling does not allow to handle i18n content in a secure way | 6.5 | - | 2023-02-23 |
| CVE-2022-32549 | log injection in Sling logging CWE-117 | 5.3 | - | 2022-06-22 |
| CVE-2020-1949 | Apache Sling CMS 跨站脚本漏洞 | 6.1 | - | 2020-04-01 |
| CVE-2017-15717 | Apache Sling XSS Protection API 安全漏洞 | 6.1 | - | 2018-01-10 |
| CVE-2012-3353 | Apache Sling JCR ContentLoader XmlReader 安全漏洞 | 7.5 | - | 2018-01-08 |
| CVE-2017-15700 | Apache Sling Authentication Service 安全漏洞 | 8.8 | - | 2017-12-18 |
| CVE-2016-5394 | Apache Sling XSS Protection API模块跨站脚本漏洞 | 6.1 | - | 2017-07-19 |
| CVE-2016-6798 | Apache Sling XSS Protection API模块安全漏洞 | 10.0 | - | 2017-07-19 |
All 8 known CVE vulnerabilities affecting Apache Sling with full Chinese analysis, references, and POCs where available.