2 matches found
CVE-2026-54502 Oj: Stack Buffer Overflow in Oj.dump via Large Indent
Oj Optimized JSON is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj.dump is vulnerable to a stack-based buffer overflow when a large :indent value is provided by the developer. fillindent in dump.h calls memsetindentstr, ' ', sizetopts-indent without...
Bludit 授权问题漏洞
Bludit is an open-source, lightweight blog content management system developed by Bludit. Versions of Bludit prior to 3.17.2 had an authorization vulnerability. This vulnerability stemmed from the ability to set session identifiers before authentication, which could lead to session hijacking...