CVE-2026-32095

Plunk is an open-source email platform built on AWS SES. Before 0.7.1, its image upload endpoint accepted SVG files, which browsers treat as active documents capable of executing embedded JavaScript, creating a stored XSS vulnerability. The issue is fixed in 0.7.1. CVSS v3.1 base score is 5.4 (Me...

plunk 跨站脚本漏洞

Plunk is an open-source email sending and management platform developed by Plunk. Versions of Plunk prior to 0.7.1 contained a cross-site scripting vulnerability. This vulnerability stemmed from the image upload endpoint accepting SVG files, which could lead to storage-based cross-site scripting...

PT-2026-24691

Name of the Vulnerable Software and Affected Versions Quill versions prior to 0.7.1 Description Quill, a tool for mac binary signing and notarization, is susceptible to a denial-of-service condition. The issue stems from unbounded reads of HTTP response bodies during the Apple notarization proces...

Quill 安全漏洞

Quill is an open-source application developed by Quill. It provides an application editor function. Versions of Quill prior to 0.7.1 contained security vulnerabilities. These vulnerabilities stemmed from the unlimited reading of HTTP response bodies during Apple certification processes, which cou...

PT-2024-39992 · Regclient · Regclient

Name of the Vulnerable Software and Affected Versions: regclient versions prior to 0.7.1 Description: A malicious registry could return a different digest for a pinned manifest without detection. This issue affects the regclient, a Docker and OCI Registry Client in Go. Recommendations: For versio...

Tempesta 安全漏洞

Tempesta FW is an all-in-one open source solution open-sourced by Tempesta Technologies. for high-performance web content delivery and advanced protection against DDoS and network attacks. A security vulnerability exists in Tempesta versions prior to 0.7.1, which stems from a flood of HTTP/2...

SUSE CVE-2008-3651

Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote authenticated users to cause a denial of service memory consumption via invalid proposals...

Binary 资源管理错误漏洞

Binary is a library by the individual developers of gagliardetto. It is used for encoding/decoding Borsh and other formats. A security vulnerability exists in Binary versions prior to 0.7.1. An attacker exploited the vulnerability to allocate slices in memory with arbitrarily oversized values,...

Rust lru crate 资源管理错误漏洞

Mozilla Rust lru crate is an implementation of the LRU cache. a security vulnerability exists in versions of Mozilla Rust lru crate prior to 0.7.1, which can lead to a resource management error. An attacker could exploit this vulnerability to cause memory corruption...

c-lightning Security Vulnerabilities

A security vulnerability exists in c-lightning versions prior to 0.7.1 that stems from incorrect access control. A remote attacker could exploit the vulnerability by not paying or underpaying the total cash amount of a transaction...

PT-2017-7393 · Ms · Ms

Name of the Vulnerable Software and Affected Versions: ms versions prior to 0.7.1 Description: The issue allows attackers to cause a denial of service CPU consumption via a long version string, also known as a "regular expression denial of service ReDoS". This occurs when extremely long version...