Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Javamelody Project Subscribe
Filtered by product Javamelody
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-15531 1 Javamelody Project 1 Javamelody 2018-11-29 7.5 HIGH 9.8 CRITICAL
JavaMelody before 1.74.0 has XXE via parseSoapMethodName in bull/javamelody/PayloadNameRequestWrapper.java.
CVE-2018-12432 1 Javamelody Project 1 Javamelody 2018-08-02 4.3 MEDIUM 6.1 MEDIUM
JavaMelody through 1.60.0 has XSS via the counter parameter in a clear_counter action to the /monitoring URI.