cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2013-2254,https://securityvulnerability.io/vulnerability/CVE-2013-2254,,"The deepGetOrCreateNode function in impl/operations/AbstractCreateOperation.java in org.apache.sling.servlets.post.bundle 2.2.0 and 2.3.0 in Apache Sling does not properly handle a NULL value that returned when the session does not have permissions to the root node, which allows remote attackers to cause a denial of service (infinite loop) via unspecified vectors.",Apache,Org.apache.sling.servlets.post,,,0.005750000011175871,false,,false,false,false,,,false,false,,2013-10-17T23:55:00.000Z,0
CVE-2012-2138,https://securityvulnerability.io/vulnerability/CVE-2012-2138,,"The @CopyFrom operation in the POST servlet in the org.apache.sling.servlets.post bundle before 2.1.2 in Apache Sling does not prevent attempts to copy an ancestor node to a descendant node, which allows remote attackers to cause a denial of service (infinite loop) via a crafted HTTP request.",Apache,Org.apache.sling.servlets.post,,,0.002589999930933118,false,,false,false,false,,,false,false,,2012-07-09T22:55:00.000Z,0