Vcl

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2024-53679 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache VCL in the User Lookup form. Rated high severity (CVSS 8.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache XSS Vcl
NVD
CVSS 4.0
8.4
EPSS
0.1%
CVE-2024-53678 MEDIUM This Month

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache VCL. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache SQLi Vcl
NVD
CVSS 4.0
5.1
EPSS
0.1%
CVE-2024-53679
EPSS 0% CVSS 8.4
HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache VCL in the User Lookup form. Rated high severity (CVSS 8.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache XSS Vcl
NVD
CVE-2024-53678
EPSS 0% CVSS 5.1
MEDIUM This Month

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache VCL. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache SQLi Vcl
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy