6.1.4

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-14	CVE-2025-24859	Unspecified vulnerability in Apache Roller A session management vulnerability exists in Apache Roller before version 6.1.5 where active user sessions are not properly invalidated after password changes. network low complexity apache	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.