Vulnerabilities (CVE)

Filtered by vendor Javamelody Project Subscribe
Filtered by product Javamelody
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-15531 1 Javamelody Project 1 Javamelody 2024-11-21 7.5 HIGH 9.8 CRITICAL
JavaMelody before 1.74.0 has XXE via parseSoapMethodName in bull/javamelody/PayloadNameRequestWrapper.java.
CVE-2018-12432 1 Javamelody Project 1 Javamelody 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
JavaMelody through 1.60.0 has XSS via the counter parameter in a clear_counter action to the /monitoring URI.