Lucene search
K

8 matches found

AlpineLinux
AlpineLinux
added 2026/03/12 7:35 p.m.3 views

CVE-2026-32240

Cap'n Proto is a data interchange format and capability-based RPC system. Prior to 1.4.0, when using Transfer-Encoding: chunked, if a chunk's size parsed to a value of 2^64 or larger, it would be truncated to a 64-bit integer. In theory, this bug could enable HTTP request/response smuggling. This...

6.5CVSS5.8AI score0.00207EPSS
Exploits0References5
NVD
NVD
added 2026/02/11 9:16 p.m.19 views

CVE-2026-25062

Outline is a service that allows for collaborative documentation. Prior to 1.4.0, during the JSON import process, the value of attachments.key from the imported JSON is passed directly to path.joinrootPath, node.key and then read using fs.readFile without validation. By embedding path traversal...

5.5CVSS0.00393EPSS
Exploits1References2
Patchstack
Patchstack
added 2025/09/22 6:55 p.m.4 views

WordPress List Child Pages Shortcode Plugin <= 1.3.1 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin List Child Pages Shortcode versions = 1.3.1...

6.5CVSS6AI score0.00258EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/09 5:8 p.m.6 views

WordPress Pixeline's Email Protector Plugin <= 1.3.8 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Pixelines Email Protector versions = 1.3.8...

5.9CVSS6.1AI score0.00165EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/03 3:11 p.m.4 views

WordPress Event Feed for Eventbrite Plugin <= 1.3.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Event Feed for Eventbrite versions = 1.3.2...

6.5CVSS6AI score0.0019EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/08/11 8:40 p.m.5 views

CVE-2025-54878 Heap Buffer Overflow in NASA CryptoLib 1.4.0 `Crypto_TC_Check_IV_Setup`

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A heap buffer overflow vulnerability exists in NASA CryptoLib version...

8.6CVSS7.3AI score0.00363EPSS
Exploits1References4
OSV
OSV
added 2022/05/05 5:15 p.m.3 views

CVE-2022-27495

On all versions 1.3.x fixed in 1.4.0 NGINX Service Mesh control plane endpoints are exposed to the cluster overlay network. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

6.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2018/05/22 1:29 p.m.3 views

CVE-2018-11366

init.php in the Loginizer plugin 1.3.8 through 1.3.9 for WordPress has Unauthenticated Stored Cross-Site Scripting XSS because logging is mishandled. This is fixed in 1.4.0...

6.1CVSS5.8AI score0.02191EPSS
Exploits2References4
Rows per page
Query Builder