CVE-2025-11482

The vulnerability CVE-2025-11482 concerns the OPC-UA Server component used in PPT30. An unauthenticated, network-based attacker can exploit an Allocation of Resources Without Limits or Throttling vulnerability on affected systems running operating system versions before 1.8.0, potentially renderi...

EUVD-2025-209928

An Allocation of Resources Without Limits or Throttling vulnerability in the OPC-UA Server used in PPT30 Operating System versions before 1.8.0 may be used by an unauthenticated network-based attacker to permanently prevent legitimate users from interacting with the service...

Langflow 安全漏洞

Langflow is an open-source visualization framework developed by Langflow for building multi-agent and RAG applications. Versions of Langflow prior to 1.8.0 contained a security vulnerability. This vulnerability stemmed from the hardcoding of allowdangerouscode=True in the CSV Agent node, which...

Apache HertzBeat 安全漏洞

Apache HertzBeat is a tool developed by the Apache company that can monitor various components. Versions of Apache HertzBeat prior to 1.8.0 contained a security vulnerability, which was caused by improper data neutralization of XPath expressions, potentially leading to XPath injection attacks...

PT-2024-28874 · Unknown · Sourcebans++

Name of the Vulnerable Software and Affected Versions: Sourcebans++ versions prior to 1.8.0 Description: The issue allows a remote attacker to obtain sensitive information via a crafted XAJAX call to the Forgot Password function. This occurs in Sourcebans++ when the attacker uses a crafted XAJAX...