Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.16 views

PT-2026-42679

Name of the Vulnerable Software and Affected Versions NocoDB affected versions not specified Description An issue exists where the upload-by-URL path fails to enforce the NC ATTACHMENT FIELD SIZE limit against the remote file's advertised Content-Length or the decoded length of a data: URI. This...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2026/05/07 8:32 p.m.107 views

Exploit for CVE-2026-38361

CVE-2026-38361: Multiple Unauthenticated DoS Vulnerabilities i...

6.1AI score0.05982EPSS
Exploits5
NVD
NVD
added 2026/04/10 5:17 p.m.31 views

CVE-2026-35602

Vikunja is an open-source self-hosted task management platform. Prior to 2.3.0, the Vikunja file import endpoint uses the attacker-controlled Size field from the JSON metadata inside the import zip instead of the actual decompressed file content length for the file size enforcement check. By...

7.1CVSS0.00338EPSS
Exploits1References3
CVE
CVE
added 2026/04/10 4:10 p.m.30 views

CVE-2026-35602

Summary: CVE-2026-35602 affects Vikunja prior to v2.3.0, where the file import endpoint uses the attacker-controlled Size from the JSON metadata instead of the decompressed file length to enforce max file size, allowing an attacker to bypass the limit by setting Size to 0. This leads to potential...

7.1CVSS5.7AI score0.00338EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2000-0914

Malware in sbrugna...

4.6CVSS6.4AI score0.00462EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/06/27 12:0 a.m.5 views

WordPress plugin WP Optimize By xTraffic 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. A code issue vulnerability exists in WordPress WP Optimize By xTraffic that stems from the application not properly validating user-submitted code, which can be exploited b...

9.8CVSS7.3AI score0.00461EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/21 12:0 a.m.3 views

Ruby on Rails Code Issues Vulnerabilities

Ruby on Rails is a set of Rails team based on the Ruby language open source Web application framework. A security vulnerability exists in Ruby on Rails versions prior to 5.2.4.2 and 6.0.3.1. An attacker can exploit this vulnerability by modifying the 'Content-Length' field of the file upload URL ...

7.5CVSS9.5AI score0.03065EPSS
Exploits1References1
Rows per page
Query Builder