jfrog
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting jfrog.
- CVE-2025-14830JFrog Artifactory Cross-Site Scripting4.9
- CVE-2024-6915JFrog Artifactory Cache Poisoning9.3
- CVE-2024-2248JFrog Artifactory Header Injection6.4
- CVE-2024-4142JFrog Artifactory Improper input validation within token creation flow9.0
- CVE-2024-3505JFrog Self-Hosted Artifactory Proxy configuration accessible to low-privilege users4.3
- CVE-2024-2247JFrog Artifactory Cross-Site Scripting8.8
- CVE-2023-42509JFrog Artifactory Sensitive Data Leakage in Repository configuration process6.6
- CVE-2023-42661JFrog Artifactory Improper input validation leads to arbitrary file write7.2
- CVE-2023-42662JFrog Artifactory Improper SSO Mechanism may lead to Exposure of Access Tokens9.3
- CVE-2023-42508JFrog Artifactory Improper header input validation leads to email manipulation sent from the platform6.5
- CVE-2022-0668JFrog Artifactory prior to 7.37.13 is vulnerable to Authentication Bypass, which can lead to Privilege Escalation when a specially crafted request is sent by an unauthenticated user.5.3
- CVE-2021-23163JFrog Artifactory prior to version 7.33.6 and 6.23.38, is vulnerable to CSRF ( Cross-Site Request Forgery) for specific endpoints. This issue affects: JFrog JFrog Artifactory JFrog Artifactory vers...3.1
- CVE-2021-46687JFrog Artifactory prior to version 7.31.10 and 6.23.38 is vulnerable to Sensitive Data Exposure through the Project Administrator REST API. This issue affects: JFrog JFrog Artifactory JFrog Artifac...4.9
- CVE-2021-45721JFrog Artifactory prior to version 7.29.8 and 6.23.38 is vulnerable to Reflected Cross-Site Scripting (XSS) through one of the XHR parameters in Users REST API endpoint. This issue affects: JFrog J...6.1
- CVE-2021-41834JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable to Broken Access Control, the copy functionality can be used by a low-privileged user to read and copy any artifact that exists ...5.3