Apache Org.apache.sling.servlets.post — known CVE vulnerabilities
Every CVE whose affected-product data names Apache Org.apache.sling.servlets.post, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2012-2138 — CVSS 5.0 (medium): The @CopyFrom operation in the POST servlet in the org.apache.sling.servlets.post bundle before 2.1.2 in Apache Sling does not prevent…
CVE-2013-2254 — CVSS 5.0 (medium): The deepGetOrCreateNode function in impl/operations/AbstractCreateOperation.java in org.apache.sling.servlets.post.bundle 2.2.0 and 2.3.0…