CVE-2025-41271

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to read arbitrary files from the device...

CVE-2025-41271

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to read arbitrary files from the device...

CVE-2026-41271

creationtimestamp| type| source ---|---|--- 2026-04-15 21:43:27+00:00| published-proof-of-concept| https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-6r77-hqx7-7vw8 2026-04-23 21:26:31+00:00| seen| Telegram/BiTM4VWQdbYmMG43-mv447qo5-YjFbOvUme2BKAYDCNPPw 2026-04-25 03:00:05+00:00| seen|...

EUVD-2025-41271

Malicious code in dewanto-sroto69-riris npm...

CVE-2022-41271

An unauthenticated user can attach to an open interface exposed through JNDI by the Messaging System of SAP NetWeaver Process Integration PI - version 7.50. This user can make use of an open naming and directory API to access services that could perform unauthorized operations. The vulnerability...

CVE-2022-41271

An unauthenticated user can attach to an open interface exposed through JNDI by the Messaging System of SAP NetWeaver Process Integration PI - version 7.50. This user can make use of an open naming and directory API to access services that could perform unauthorized operations. The vulnerability...

CVE-2022-41271

CVE-2022-41271 affects SAP NetWeaver Process Integration (PI) 7.50. An unauthenticated attacker can attach to an open interface exposed via JNDI and use an open naming/directory API to access services that can perform unauthorized operations. Impact per sources includes confidentiality and availa...

Discourse < 2.7.10 Cache Poisoning Vulnerability

Discourse is prone to a cache poisoning vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse";...

CVE-2021-41271

creationtimestamp| type| source ---|---|--- 2021-11-17 16:20:35+00:00| seen| https://t.me/cibsecurity/32467...

CVE-2021-41271

Discourse is a platform for community discussion. In affected versions a maliciously crafted request could cause an error response to be cached by intermediate proxies. This could cause a loss of confidentiality for some content. This issue is patched in the latest stable, beta and tests-passed...

CVE-2021-41271 Cache poisoning via maliciously-formed request in discourse

Discourse is a platform for community discussion. In affected versions a maliciously crafted request could cause an error response to be cached by intermediate proxies. This could cause a loss of confidentiality for some content. This issue is patched in the latest stable, beta and tests-passed...

CVE-2021-41271

CVE-2021-41271 affects Discourse; a maliciously crafted request could cause an error response to be cached by intermediate proxies, leading to partial loss of content confidentiality. The issue is described as affecting affected Discourse versions, with remediation implemented in the latest stabl...

Linux kernel memory leak vulnerability (CNVD-2019-41271)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A memory disclosure vulnerability exists in the ath9kwmicmd function in drivers/net/wireless/ath/ath9k/wmi.c in Linux...