Apache Software Foundation Apache Sling vulnerabilities

CVE-2023-25621 [MEDIUM] CVE-2023-25621: Privilege Escalation vulnerability in Apache Software Foundation Apache Sling. Any content author is Privilege Escalation vulnerability in Apache Software Foundation Apache Sling. Any content author is able to create i18n dictionaries in the repository in a location the author has write access to. As these translations are used across the whole product, it allows an author to change any text or dialog in the product. For example an attacker might fool some

CVE-2022-32549 [MEDIUM] CWE-117 CVE-2022-32549: Apache Sling Commons Log <= 5.4.0 and Apache Sling API <= 2.25.0 are vulnerable to log injection. Th Apache Sling Commons Log <= 5.4.0 and Apache Sling API <= 2.25.0 are vulnerable to log injection. The ability to forge logs may allow an attacker to cover tracks by injecting fake logs and potentially corrupt log files.

CVE-2017-15717 [MEDIUM] CWE-79 CVE-2017-15717: A flaw in the way URLs are escaped and encoded in the org.apache.sling.xss.impl.XSSAPIImpl#getValidH A flaw in the way URLs are escaped and encoded in the org.apache.sling.xss.impl.XSSAPIImpl#getValidHref and org.apache.sling.xss.impl.XSSFilterImpl#isValidHref allows special crafted URLs to pass as valid, although they carry XSS payloads. The affected versions are Apache Sling XSS Protection API 1.0.4 to 1.0.18, Apache Sling XSS Protection API Compa

CVE-2012-3353 [HIGH] CWE-200 CVE-2012-3353: The Apache Sling JCR ContentLoader 2.1.4 XmlReader used in the Sling JCR content loader module makes The Apache Sling JCR ContentLoader 2.1.4 XmlReader used in the Sling JCR content loader module makes it possible to import arbitrary files in the content repository, including local files, causing potential information leaks. Users should upgrade to version 2.1.6 of the JCR ContentLoader

CVE-2017-15700 [HIGH] CWE-200 CVE-2017-15700: A flaw in the org.apache.sling.auth.core.AuthUtil#isRedirectValid method in Apache Sling Authenticat A flaw in the org.apache.sling.auth.core.AuthUtil#isRedirectValid method in Apache Sling Authentication Service 1.4.0 allows an attacker, through the Sling login form, to trick a victim to send over their credentials.

CVE-2016-6798 [CRITICAL] CWE-611 CVE-2016-6798: In the XSS Protection API module before 1.0.12 in Apache Sling, the method XSS.getValidXML() uses an In the XSS Protection API module before 1.0.12 in Apache Sling, the method XSS.getValidXML() uses an insecure SAX parser to validate the input string, which allows for XXE attacks in all scripts which use this method to validate user input, potentially allowing an attacker to read sensitive data on the filesystem, perform same-site-request-forgery (

CVE-2016-5394 [MEDIUM] CWE-79 CVE-2016-5394: In the XSS Protection API module before 1.0.12 in Apache Sling, the encoding done by the XSSAPI.enco In the XSS Protection API module before 1.0.12 in Apache Sling, the encoding done by the XSSAPI.encodeForJSString() method is not restrictive enough and for some input patterns allows script tags to pass through unencoded, leading to potential XSS vulnerabilities.