CVE-2026-8237 Concrete CMS 9.5.0 and below is vulnerable to IDOR in the`/ccm/frontend/conversations/message_detail` endpoint

Concrete CMS 9.5.0 and below is vulnerable to IDOR. The /ccm/frontend/conversations/messagedetail endpoint returns the full content of any conversation message. An unauthenticated attacker can enumerate all conversation messages, including messages from restricted pages, member-only areas, and th...

Ubuntu 24.04 LTS / 25.10 / 26.04 LTS : WebKitGTK vulnerabilities (USN-8237-1)

The remote Ubuntu 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8237-1 advisory. Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious...

CGA-8237-4CG2-53GC

Bulletin has no description...

MAL-2025-8237 Malicious code in @landmineaknpm2/aliquid-iste-ipsum (npm)

The package @landmineaknpm2/aliquid-iste-ipsum was found to contain malicious code...

CVE-2025-8237

A vulnerability was found in code-projects Exam Form Submission 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/updates1.php. The manipulation of the argument credits leads to sql injection. The attack may be initiated remotely. The exploit has be...

CVE-2025-8237

The CVE-2025-8237 entry describes a SQL injection in code-projects Exam Form Submission 1.0, caused by improper handling of the credits parameter in /admin/update_s1.php. This enables remote exploitation and is described as a critical issue; multiple sources corroborate the vulnerability in the s...

CVE-2024-8237 Inefficient Algorithmic Complexity in GitLab

A Denial of Service DoS issue has been discovered in GitLab CE/EE affecting all versions prior to 12.6 prior to 17.4.5, 17.5 prior to 17.5.3, and 17.6 prior to 17.6.1. An attacker could cause a denial of service with a crafted cargo.toml file...

CVE-2024-8237

GitLab CVE-2024-8237 affects GitLab CE/EE with a DoS vulnerability triggered by a crafted cargo.toml. All versions prior to 12.6, and specifically prior to 17.4.5 in the 12.6 branch, prior to 17.5.3 in the 17.5 line, and prior to 17.6.1 in the 17.6 line, are affected. The public descriptions cons...

CVE-2024-8237 Inefficient Algorithmic Complexity in GitLab

A Denial of Service DoS issue has been discovered in GitLab CE/EE affecting all versions prior to 12.6 prior to 17.4.5, 17.5 prior to 17.5.3, and 17.6 prior to 17.6.1. An attacker could cause a denial of service with a crafted cargo.toml file...

CVE-2024-8237

creationtimestamp| type| source ---|---|--- 2024-11-26 15:33:23+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113549980676758562 2024-11-26 18:52:04+00:00| seen| https://infosec.exchange/users/cve/statuses/113550761931756918...

GitLab 12.6 < 17.4.5 / 17.5 < 17.5.3 / 17.6 < 17.6.1 (CVE-2024-8237)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Inefficient Algorithmic Complexity in GitLab CVE-2024-8237 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...

CGA-45W7-8237-VFRX

Bulletin has no description...

Uncontrolled Resource Consumption in json-bigint

Overview Prototype pollution in json-bigint package 1.0.0 may lead to a denial-of-service DoS attack. Recommendation Upgrade to version 1.0.0 or later References - CVE - GitHub Advisory...

0chain (>=1.0.1 <=1.3.14), 20scoops-localizer (>=1.0.0 <=1.2.8) +3056 more potentially affected by CVE-2020-8237 via json-bigint (>=0.1.4 <=0.4.0)

json-bigint NPM version =0.1.4, =1.0.1, =1.0.0, =2.0.0, =0.1.0, =1.0.0, =1.0.24, =1.5.4, =1.9.6, =1.1.0, =1.4.1, =0.0.1, =0.0.14, =0.0.14, =0.0.13, =0.0.14, =0.0.16 and more Source cves: CVE-2020-8237 Source advisory: OSV:GHSA-WGFQ-7857-4JCC...

Moderate: Red Hat Security Advisory: Red Hat OpenShift Container Storage 4.6.0 security, bug fix, enhancement update

Updated images are now available for Red Hat OpenShift Container Storage 4.6.0 on Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Security Bulletin: App Connect Enterprise Certified Container may be vulnerable to buffer overflows, Denial of Service or HTTP request smuggling

Summary App Connect Enterprise Certified Container when running Desginer flows may be vulnerable to Denial of Service via to CVE-2020-8237, HTTP request smuggling via CVE-2020-8201 or buffer overflows via CVE-2020-8252. Vulnerability Details CVEID: CVE-2020-8237 DESCRIPTION: Node.js json-bigint...

CVE-2020-8237

Prototype pollution in json-bigint npm package 1.0.0 may lead to a denial-of-service DoS attack...

CVE-2020-8237

Prototype pollution in json-bigint npm package 1.0.0 may lead to a denial-of-service DoS attack...

CVE-2020-8237

Prototype pollution in json-bigint npm package 1.0.0 may lead to a denial-of-service DoS attack...

CVE-2020-8237

CVE-2020-8237 describes a DoS via prototype pollution in the json-bigint npm package (