Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libcommons-fileupload-java@1.3-2.1?distro=trixie
purl pkg:deb/debian/libcommons-fileupload-java@1.3-2.1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-jc2q-ht2b-cfhx The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance. CVE-2013-2186
GHSA-qx6h-9567-5fqw

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T09:33:25.564168+00:00 Debian Importer Fixing VCID-jc2q-ht2b-cfhx https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-11T18:22:12.056676+00:00 Debian Importer Fixing VCID-jc2q-ht2b-cfhx https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:28:34.773992+00:00 Debian Importer Fixing VCID-jc2q-ht2b-cfhx https://security-tracker.debian.org/tracker/data/json 38.1.0