5 matches found
CVE-2026-58578
creationtimestamp| type| source ---|---|--- 2026-07-03 15:09:17+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqtbixkof2w...
CVE-2026-58578
LobeChat before version 2.2.10-canary.15 contains a regular expression denial of service ReDoS vulnerability that allows authenticated attackers to block the Node.js event loop by supplying a catastrophic-backtracking pattern in a GitHub repository URL path during skill import. Attackers can craf...
CVE-2025-58578
creationtimestamp| type| source ---|---|--- 2025-10-06 07:06:04+00:00| seen| Telegram/5rxb6ADVOOiw709SbZ1BYJtC79KazS099F1pbq23JmTlpY...
CVE-2025-58578
The CVE-2025-58578 describes an API misuse where an authorized user can create an unlimited number of user accounts via a POST endpoint due to no quotas or validation. Public documents across Red Hat, NVD, CVE lists, and SICK-related advisories confirm the core issue (unbounded account creation) ...
Envoy has an unspecified vulnerability (CNVD-2021-58578)
Envoy is an open source distributed proxy server. security vulnerabilities exist in versions prior to Envoy 1.15.0. No details of the vulnerability are currently available...