Every CVE whose affected-product data names Apache Ws-xmlrpc, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-5003 — CVSS 9.8 (critical): The Apache XML-RPC (aka ws-xmlrpc) library 3.1.3, as used in Apache Archiva, allows remote attackers to execute arbitrary code via a…
CVE-2016-5004 — CVSS 6.5 (medium): The Content-Encoding HTTP header feature in ws-xmlrpc 3.1.3 as used in Apache Archiva allows remote attackers to cause a denial of service…