CVE-2016-15057P1CRITICALCVSS 9.9Exploitedfixed in *2026-01-26
CVE-2016-15057 [CRITICAL] CWE-77 CVE-2016-15057: ** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of Special Elements used in a Command ('Comm
** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Continuum.
This issue affects Apache Continuum: all versions.
Attackers with access to the installations REST API can use this to invoke arbitrary commands on the server.
As this project is retired, we do no
nvd