Vulnerabilities

CVE-2016-10033 Remote Code Execution

CVE-2014-2383 Arbitrary file read

CVE-2015-6584 XSS vulnerability

CVE-2014-0053 Information disclosure

CVE-2013-5855 XSS due to insufficient escaping of user-supplied content in outputText tags and EL expressions

CVE-2014-6439 CSRF via insecure CORS default configuration

CVE-2014-0050 Denial of service

CVE-2014-7809 Predictable CSRF token

← Previous