Lucene search
K

197 matches found

Veracode
Veracode
added 2023/10/24 2:58 a.m.34 views

Buffer Overflow

libz.so is vulnerable to Buffer Overflow. The vulnerability is present due to the absence of length checks in the filename, extrafield, and comment parameters within the zip.c. This oversight enables an attacker to trigger an integer overflow, leading to a heap-based buffer overflow in the...

9.8CVSS7.5AI score0.02918EPSS
Exploits0References13Affected Software5
Tenable Nessus
Tenable Nessus
added 2023/09/19 12:0 a.m.29 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : Node.js vulnerabilities (USN-6380-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6380-1 advisory. Rogier Schouten discovered that Node.js incorrectly handled certain inputs. If a user or an automated system were tricked into...

9.8CVSS8.1AI score0.57132EPSS
Exploits6References7
NVD
NVD
added 2023/09/12 5:15 a.m.29 views

CVE-2023-26142

All versions of the package crow are vulnerable to HTTP Response Splitting when untrusted user input is used to build header values. Header values are not properly sanitized against CRLF Injection in the setheader and addheader functions. An attacker can add the \r\n carriage return line feeds...

6.5CVSS6.6AI score0.0045EPSS
Exploits1References2
OSV
OSV
added 2023/09/12 5:15 a.m.18 views

CVE-2023-26142

All versions of the package crow are vulnerable to HTTP Response Splitting when untrusted user input is used to build header values. Header values are not properly sanitized against CRLF Injection in the setheader and addheader functions. An attacker can add the \r\n carriage return line feeds...

6.1CVSS7.4AI score
Exploits0References2
Prion
Prion
added 2023/09/12 5:15 a.m.22 views

Crlf injection

All versions of the package crow are vulnerable to HTTP Response Splitting when untrusted user input is used to build header values. Header values are not properly sanitized against CRLF Injection in the setheader and addheader functions. An attacker can add the \r\n carriage return line feeds...

5.8CVSS6.5AI score0.0045EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/12 5:0 a.m.8 views

CVE-2023-26142

All versions of the package crow are vulnerable to HTTP Response Splitting when untrusted user input is used to build header values. Header values are not properly sanitized against CRLF Injection in the setheader and addheader functions. An attacker can add the \r\n carriage return line feeds...

6.5CVSS7.1AI score0.0045EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/09/12 5:0 a.m.35 views

CVE-2023-26142

All versions of the package crow are vulnerable to HTTP Response Splitting when untrusted user input is used to build header values. Header values are not properly sanitized against CRLF Injection in the setheader and addheader functions. An attacker can add the \r\n carriage return line feeds...

6.5CVSS6.8AI score0.0045EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2023/08/30 9:24 p.m.18 views

Prevent logging invalid header values

Impact What kind of vulnerability is it? Apollo Server can log sensitive information Studio API keys if they are passed incorrectly with leading/trailing whitespace or if they have any characters that are invalid as part of a header value. Who is impacted? Users who all of the below: use either t...

6.7AI score
Exploits0References4Affected Software2
OSV
OSV
added 2023/08/30 9:24 p.m.2 views

GHSA-J5G3-5C8R-7QFX Prevent logging invalid header values

Impact What kind of vulnerability is it? Apollo Server can log sensitive information Studio API keys if they are passed incorrectly with leading/trailing whitespace or if they have any characters that are invalid as part of a header value. Who is impacted? Users who all of the below: use either t...

5.9AI score
Exploits0References4
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/30 12:0 a.m.27 views

Prevent logging invalid header values

Impact What kind of vulnerability is it? Apollo Server can log sensitive information Studio API keys if they are passed incorrectly with leading/trailing whitespace or if they have any characters that are invalid as part of a header value. Who is impacted? Users who all of the below: use either t...

6.7AI score
Exploits0References4Affected Software1
OSV
OSV
added 2023/08/04 3:15 a.m.6 views

CVE-2023-4140

The WP Ultimate CSV Importer plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 7.9.8 due to insufficient restriction on the 'getheadervalues' function. This makes it possible for authenticated attackers, with minimal permissions such as an author, if the...

8.8CVSS5.8AI score0.00612EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/08/04 12:0 a.m.4 views

WordPress plugin WP Ultimate CSV Importer Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.8AI score0.00612EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/08/04 12:0 a.m.6 views

PT-2023-27940 · WordPress · Wp Ultimate Csv Importer

Name of the Vulnerable Software and Affected Versions: WP Ultimate CSV Importer plugin for WordPress versions up to, and including, 7.9.8 Description: The issue is related to privilege escalation due to insufficient restriction on the get header values function. This allows authenticated attacker...

8.8CVSS8.8AI score0.00612EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2023/07/06 5:0 a.m.13 views

CVE-2023-26137

All versions of the package drogonframework/drogon are vulnerable to HTTP Response Splitting when untrusted user input is used to build header values in the addHeader and addCookie functions. An attacker can add the \r\n carriage return line feeds characters to end the HTTP response headers and...

7.2CVSS7.1AI score0.0038EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/07/06 5:0 a.m.25 views

CVE-2023-26137

All versions of the package drogonframework/drogon are vulnerable to HTTP Response Splitting when untrusted user input is used to build header values in the addHeader and addCookie functions. An attacker can add the \r\n carriage return line feeds characters to end the HTTP response headers and...

7.2CVSS7.2AI score0.0038EPSS
Exploits1References2
NVD
NVD
added 2023/06/06 7:15 p.m.52 views

CVE-2023-33977

Kiwi TCMS is an open source test management system for both manual and automated testing. Kiwi TCMS allows users to upload attachments to test plans, test cases, etc. Earlier versions of Kiwi TCMS had introduced upload validators in order to prevent potentially dangerous files from being uploaded...

8.1CVSS8.1AI score0.0087EPSS
Exploits1References5
Cvelist
Cvelist
added 2023/06/06 6:3 p.m.43 views

CVE-2023-33977 Stored cross site scripting (XSS) via unrestricted file upload in Kiwi TCMS

Kiwi TCMS is an open source test management system for both manual and automated testing. Kiwi TCMS allows users to upload attachments to test plans, test cases, etc. Earlier versions of Kiwi TCMS had introduced upload validators in order to prevent potentially dangerous files from being uploaded...

8.1CVSS8.3AI score0.0087EPSS
Exploits1References5
OSV
OSV
added 2023/06/06 4:46 p.m.19 views

GHSA-2FQM-M4R2-FH98 kiwitcms vulnerable to stored cross-site scripting via unrestricted file upload

Impact Kiwi TCMS allows users to upload attachments to test plans, test cases, etc. Earlier versions of Kiwi TCMS had introduced upload validators in order to prevent potentially dangerous files from being uploaded and Content-Security-Policy definition to prevent cross-site-scripting attacks. Th...

8.1CVSS6.7AI score0.0087EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2023/05/09 11:51 a.m.4 views

Node.js: Regular Expression Denial of Service in Headers fetch API

Undici is an HTTP/1.1 client for Node.js. Prior to version 5.19.1, the Headers.set and Headers.append methods are vulnerable to Regular Expression Denial of Service ReDoS attacks when untrusted values are passed into the functions. This is due to the inefficient regular expression used to normali...

7.5CVSS7.2AI score0.01304EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/09 11:51 a.m.2 views

http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability

A flaw was found in http-cache-semantics. When the server reads the cache policy from the request using this library, a Regular Expression Denial of Service occurs, caused by malicious request header values sent to the server...

7.5CVSS7.1AI score0.01613EPSS
Exploits1References4
Rows per page
Query Builder