Lucene search
+L

153 matches found

Spring Security Advisories
Spring Security Advisories
added 2026/05/08 12:0 a.m.7 views

Expression injection in MilvusVectorStore doDelete allows data destruction

Spring AI's MilvusVectorStoredoDeleteList implementation is vulnerable to filter-expression injection via unsanitized document IDs...

8.6CVSS5.8AI score0.00353EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/04/20 7:10 a.m.19 views

CVE-2026-41282

Summary: CVE-2026-41282 affects ProjectDiscovery Nuclei prior to 3.8.0, where DSL expression injection is possible when using -env-vars for multi-step templates against untrusted targets configured non-defaultly. The Red Hat advisory describes a flaw enabling DSL injection that could lead to unau...

7.5CVSS5.8AI score0.0025EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/04/20 7:10 a.m.4 views

CVE-2026-41282

ProjectDiscovery Nuclei 3 before 3.8.0 allows DSL expression injection. This affects use of -env-vars for multi-step templates against untrusted targets not the default configuration...

4CVSS5.9AI score0.00344EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/04/20 12:0 a.m.9 views

Nuclei 安全漏洞

Nuclei is a fast-customizable vulnerability scanner based on simple YAML, open-sourced by ProjectDiscovery. Versions of Nuclei prior to 3.8.0 have security vulnerabilities, which stem from DSL expression injection and may affect the use of multi-step templates...

7.5CVSS5.8AI score0.0025EPSS
Exploits0References2
Veracode
Veracode
added 2026/04/16 11:16 a.m.10 views

Improper Input Validation

Lodash is vulnerable to Improper Input Validation. The vulnerability is due to insufficient validation of options.imports key names and unsafe merging of inherited properties, which allows an attacker to inject malicious expressions that execute arbitrary code during template compilation...

9.8CVSS6.1AI score0.02474EPSS
Exploits0References68Affected Software4
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.10 views

OpenRemote 安全漏洞

OpenRemote is an open-source IoT platform developed by OpenRemote. Versions of OpenRemote prior to 1.22.0 contained security vulnerabilities. These vulnerabilities were caused by two related expression injections in the rule engine, which could allow arbitrary code to execute on the server...

9.9CVSS6.2AI score0.00924EPSS
Exploits2References2
CVE
CVE
added 2026/04/14 11:21 p.m.17 views

CVE-2026-39842

OpenRemote (IoT platform)

9.9CVSS6.7AI score0.00924EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/14 11:21 p.m.6 views

CVE-2026-39842 OpenRemote is Vulnerable to Expression Injection

OpenRemote is an open-source IoT platform. Versions 1.21.0 and below contain two interrelated expression injection vulnerabilities in the rules engine that allow arbitrary code execution on the server. The JavaScript rules engine executes user-supplied scripts via Nashorn's ScriptEngine.eval...

9.9CVSS6.7AI score0.00924EPSS
Exploits2References2
OSV
OSV
added 2026/04/14 11:21 p.m.2 views

CVE-2026-39842 OpenRemote is Vulnerable to Expression Injection

OpenRemote is an open-source IoT platform. Versions 1.21.0 and below contain two interrelated expression injection vulnerabilities in the rules engine that allow arbitrary code execution on the server. The JavaScript rules engine executes user-supplied scripts via Nashorn's ScriptEngine.eval...

9.9CVSS6.8AI score0.00924EPSS
Exploits2References4
GithubExploit
GithubExploit
added 2026/04/14 10:41 p.m.98 views

Exploit for Improper Control of Dynamically-Managed Code Resources in N8N

n8n Expression Injection RCE Analysis CVE-2025-68613 This r...

9.9CVSS7.5AI score0.97875EPSS
Exploits29
EUVD
EUVD
added 2026/04/14 10:31 p.m.5 views

EUVD-2026-22806

Expression Injection in OpenRemote...

9.9CVSS5.8AI score0.00924EPSS
Exploits2References2
Github Security Blog
Github Security Blog
added 2026/04/14 10:31 p.m.13 views

Expression Injection in OpenRemote

Summary The OpenRemote IoT platform's rules engine contains two interrelated critical expression injection vulnerabilities that allow an attacker to execute arbitrary code on the server, ultimately achieving full server compromise. - Unsandboxed Nashorn JavaScript Engine: JavaScript rules are...

9.9CVSS6.5AI score0.00924EPSS
Exploits2References4Affected Software1
OSV
OSV
added 2026/04/14 10:31 p.m.8 views

GHSA-7MQR-33RV-P3MP Expression Injection in OpenRemote

Summary The OpenRemote IoT platform's rules engine contains two interrelated critical expression injection vulnerabilities that allow an attacker to execute arbitrary code on the server, ultimately achieving full server compromise. - Unsandboxed Nashorn JavaScript Engine: JavaScript rules are...

9.9CVSS6.5AI score0.00924EPSS
Exploits2References4
OSV
OSV
added 2026/04/12 12:30 p.m.4 views

GHSA-822V-8W6H-5JXP Warm-Flow has a SpEL Expression Injection in SpelHelper.parseExpression

A security flaw has been discovered in Dromara warm-flow up to 1.8.4. Impacted is the function SpelHelper.parseExpression of the file /warm-flow/save-json of the component Workflow Definition Handler. The manipulation of the argument listenerPath/skipCondition/permissionFlag results in code...

6.3CVSS6.3AI score0.00301EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2026/04/02 8:35 p.m.12 views

Rack::Sendfile header-based X-Accel-Mapping regex injection enables unauthorized X-Accel-Redirect

Summary Rack::Sendfilemapaccelpath interpolates the value of the X-Accel-Mapping request header directly into a regular expression when rewriting file paths for X-Accel-Redirect. Because the header value is not escaped, an attacker who can supply X-Accel-Mapping to the backend can inject regex...

7.5CVSS5.8AI score0.00209EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/03/30 7:16 p.m.66 views

CVE-2026-34714

Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configuration, because %expr injection occurs with tabpanel lacking PMLE...

9.2CVSS0.00588EPSS
Exploits0References10
OSV
OSV
added 2026/03/30 6:27 p.m.2 views

CVE-2026-34714

Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configuration, because %expr injection occurs with tabpanel lacking PMLE...

9.2CVSS7.1AI score0.00588EPSS
Exploits0References12
AlpineLinux
AlpineLinux
added 2026/03/30 6:27 p.m.5 views

CVE-2026-34714

Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configuration, because %expr injection occurs with tabpanel lacking PMLE...

9.2CVSS6.3AI score0.00588EPSS
Exploits0References10
CNVD
CNVD
added 2026/03/26 12:0 a.m.6 views

OpenClaw Denial of Service Vulnerability (CNVD-2026-15152)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a denial of service hole that can be exploited by attackers to cause regular expression injection and denial of service...

8.2CVSS5.9AI score0.00311EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/18 1:34 a.m.2 views

CVE-2026-22178 OpenClaw < 2026.2.19 - ReDoS and Regex Injection via Unescaped Feishu Mention Metadata

OpenClaw versions prior to 2026.2.19 construct RegExp objects directly from unescaped Feishu mention metadata in the stripBotMention function, allowing regex injection and denial of service. Attackers can craft nested-quantifier patterns or metacharacters in mention metadata to trigger catastroph...

6.9CVSS5.8AI score0.00311EPSS
Exploits0References4
Rows per page
Query Builder