CVE-2015-0249

EPSS 0.40% · P61 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-0249

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The weblog page template in Apache Roller 5.1 through 5.1.1 allows remote authenticated users with admin privileges for a weblog to execute arbitrary Java code via crafted Velocity Text Language (aka VTL).

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apache Roller 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Apache Roller是美国阿帕奇（Apache）软件基金会的一套功能丰富的多用户博客平台。 Apache Roller 5.1版本至5.1.1版本中的weblog页面模板存在安全漏洞。远程攻击者可借助特制的Velocity Text Language利用该漏洞执行任意Java代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-0249

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-0249

请登录查看更多情报信息。

https://mail-archives.apache.org/mod_mbox/roller-user/201503.mbox/%3CCAF1aazAPWTduVhrPr7WiFaspFdsh21yf0YiSB3UmLjtDVGnfXw%40mail.gmail.com%3Ex_refsource_CONFIRM
http://cve.killedkenny.io/cve/CVE-2015-0249x_refsource_MISC
http://www.openwall.com/lists/oss-security/2015/03/30/13mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2015-0249

Same Patch Batch · n/a · 2017-07-14 · 19 CVEs total

CVE-2017-11318		Cobian Backup 11 client 操作系统命令注入漏洞
CVE-2017-9814		cairo 安全漏洞
CVE-2017-3103		Adobe Connect for Windows 代码注入漏洞
CVE-2017-3102		Adobe Connect for Windows 跨站脚本漏洞
CVE-2017-3101		Adobe Connect for Windows 安全漏洞
CVE-2017-3100		Adobe Flash Player 信息泄露漏洞
CVE-2017-3099		Adobe Flash Player 安全漏洞
CVE-2017-3080		Adobe Flash Player 信息泄露漏洞
CVE-2017-11328		YARA 缓冲区错误漏洞
CVE-2015-5152		Foreman 信息泄露漏洞
CVE-2017-11329		GLPI SQL注入漏洞
CVE-2016-10398		Android 权限许可和访问控制漏洞
CVE-2016-6793		Apache Wicket 代码问题漏洞
CVE-2016-6312		Red Hat Enterprise Linux 资源管理错误漏洞
CVE-2016-4996		Foreman 信任管理问题漏洞
CVE-2016-4984		OpenLDAP openldap-servers 竞争条件漏洞
CVE-2016-4982		authd 竞争条件漏洞
CVE-2016-0764		多款Red Hat产品Network Manager 竞争条件漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-0249

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2015-0249

I. Basic Information for CVE-2015-0249

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2015-0249

III. Intelligence Information for CVE-2015-0249

Same Patch Batch · n/a · 2017-07-14 · 19 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2015-0249

Leave a comment