Apache has fixed a critical security vulnerability in its open-source OFBiz (Open For Business) software, which could allow attackers to execute arbitrary code on vulnerable Linux and Windows servers.

Organizations utilizing Apache OFBiz have been warned to promptly address a critical vulnerability due to escalating exploitation attempts targeting a recently identified security flaw. Tracked as CVE ...

Researchers discovered a new RCE flaw while analyzing the patch for a different flaw currently targeted by attackers. As the fifth critical flaw this year for the ERP framework, users are urged to ...

An updated version of the ERP software Apache OfBiz closes security leaks that allow the execution of malicious code.

Apache released a patch for a critical severity vulnerability in its OFBiz software. The bug is an arbitrary code execution flaw, allowing threat actors to run any code on either Windows, or Linux ...

A critical Apache OFBiz pre-authentication remote code execution vulnerability is being actively exploited using public proof of concept (PoC) exploits.

there are a few that i've come across that cover apache 1.x, but i haven't been able to find anything that covers 2, and has anything about frontpage.while i guess i can sort out the dependencies ...

Apache releases new version of OFBiz The OFBiz project includes many functions well-known to fans of such open source companies as SugarCRM, Compiere, and Magento. Written by Dana Blankenhorn ...