cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-37724,https://securityvulnerability.io/vulnerability/CVE-2022-37724,Arbitrary HTTP Header Injection and XSS Flaw in Project Wonder WebObjects by Wonder,"Project Wonder WebObjects versions 1.0 through 5.4.3 are susceptible to an arbitrary HTTP header injection vulnerability, which can facilitate various harmful exploits, including URL- or header-based cross-site scripting (XSS) reflection. This flaw exists in all web-server adaptor interfaces, potentially allowing attackers to manipulate how responses are handled, leading to unauthorized actions and data exposure. Secure coding practices and prompt updates are essential for mitigating this risk.",Apple,Webobjects,6.1,MEDIUM,0.000590000010561198,false,,false,false,false,,,false,false,,2022-09-14T20:25:01.000Z,0
CVE-2011-3998,https://securityvulnerability.io/vulnerability/CVE-2011-3998,,Cross-site scripting (XSS) vulnerability in Apple WebObjects 5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,Apple,Webobjects,,,0.0013200000394135714,false,,false,false,false,,,false,false,,2011-11-09T20:55:00.000Z,0
CVE-2000-0299,https://securityvulnerability.io/vulnerability/CVE-2000-0299,,Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request with long headers such as Accept.,Apple,Webobjects,,,0.006909999996423721,false,,false,false,false,,,false,false,,2000-04-04T04:00:00.000Z,0