Product
apache jackrabbit
6 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-58782
CVE-2025-53689
CVE-2023-37895
CVE-2016-6801
CVE-2015-1833
CVE-2009-0026
>= 1.0.0 and < 2.22.2
Deserialization of Untrusted Data vulnerability in Apache Jackrabbit Core and Apache Jackrabbit JCR Commons. This issue affects A
>= 2.20.0 and < 2.20.17
Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-core in Apache Jackrabbit < 2.23.2 due to usage of an unsecured
>= 1.0.0 and < 2.20.11
Java object deserialization issue in Jackrabbit webapp/standalone on all platforms allows attacker to remotely execute code via RM
all versions
Cross-site request forgery (CSRF) vulnerability in the CSRF content-type check in Jackrabbit-Webdav in Apache Jackrabbit 2.4.x bef
<= 2.0.5
XML external entity (XXE) vulnerability in Apache Jackrabbit before 2.0.6, 2.2.x before 2.2.14, 2.4.x before 2.4.6, 2.6.x before 2
all versions
Multiple cross-site scripting (XSS) vulnerabilities in Apache Jackrabbit before 1.5.2 allow remote attackers to inject arbitrary w