Lucene search
K

4 matches found

OSV
OSV
added 2026/07/01 12:16 a.m.3 views

UBUNTU-CVE-2026-54902

Oj Optimized JSON is a JSON parser and Object marshaller packaged as a Ruby gem. Prior to version 3.17.2, is vulnerable to Use-After-Free when in SAJ mode. The Oj::Parser does not protect cached object keys ≥ 35 bytes from garbage collection, and a Ruby callback that triggers GC inside hashend ca...

6.3CVSS5.7AI score0.00253EPSS
Exploits0References3
NVD
NVD
added 2026/04/14 9:16 a.m.18 views

CVE-2026-31924

Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. tencent-cloud-cls log export uses plaintext HTTP This issue affects Apache APISIX: from 2.99.0 through 3.15.0. Users are recommended to upgrade to version 3.16.0, which fixes the issue...

5.3CVSS0.00238EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-25341

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A flaw exists in the freerdp bitmap decompress planar function where an out-of-bounds read can occur when the SrcSize is 0. The...

9.8CVSS6AI score0.00656EPSS
Exploits15References56
Patchstack
Patchstack
added 2025/05/01 9:57 p.m.6 views

WordPress Advance Seat Reservation Management for WooCommerce plugin <= 3.3 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Aiden Thái An in WordPress Plugin Advance Seat Reservation Management for WooCommerce versions = 3.3...

7.5CVSS9.5AI score0.00347EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder