Lucene search
K

73 matches found

RedHat Linux
RedHat Linux
added 2025/11/11 7:52 p.m.5 views

rubygem-rack: Rack QueryParser has an unsafe default allowing params_limit bypass via semicolon-separated parameters

An unsafe default behavior in Rack::QueryParser allows bypass of the paramslimit parameter count restriction when query string parameters are delimited by semicolons ; rather than ampersands &. The parser counts only & when enforcing the limit, while still splitting on both & and ;. As a result, ...

7.5CVSS6.9AI score0.00535EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-29359

Malicious code in bioql PyPI...

8.1CVSS8AI score0.01549EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-23364

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service ReDoS during parsing of queries. CVE-2021-23364 Not...

5.3CVSS6.8AI score0.02429EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 6:52 p.m.15 views

CVE-2021-43304

Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operations in the LZ4::decompressImpl loop and especially the arbitrary copy operation wildCopyop, ip, copyend, don’t exceed the destination buffer’s limits...

8.8CVSS7.1AI score0.01646EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 6:50 p.m.15 views

CVE-2021-43305

Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operations in the LZ4::decompressImpl loop and especially the arbitrary copy operation wildCopyop, ip, copyend, don’t exceed the destination buffer’s limits. This issu...

8.8CVSS6.9AI score0.01646EPSS
Exploits2
CNNVD
CNNVD
added 2025/05/07 12:0 a.m.3 views

Rack 安全漏洞

Rack is a modular Ruby web server interface open-sourced by Rack. A security vulnerability exists in Rack versions prior to 2.2.14, 3.0.16, and 3.1.14, which stems from Rack::QueryParser parsing a query string without limiting the number of parameters, which could lead to a denial-of-service atta...

7.5CVSS7.3AI score0.00911EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/10/28 12:0 a.m.4 views

MongoDB mongocryptd和MongoDB Mongo_crypt_v1.so 安全漏洞

MongoDB mongocryptd and MongoDB Mongocryptv1.so are both products of MongoDB, Inc. of the U.S.A. MongoDB mongocryptd is a client-side encryption library.MongoDB Mongocryptv1.so is an auto-encryption shared library used to perform encryption and decryption operations. A security vulnerability exis...

3.3CVSS6.4AI score0.00119EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2024/07/11 1:21 p.m.16 views

Wagtail regular expression denial-of-service via search query parsing

Impact A bug in Wagtail's parsequerystring would result in it taking a long time to process suitably crafted inputs. When used to parse sufficiently long strings of characters without a space, parsequerystring would take an unexpectedly large amount of time to process, resulting in a denial of...

6.5CVSS5.4AI score0.0061EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2024/04/12 11:7 a.m.2 views

OESA-2024-1404 nodejs-qs security update

This is a query string parser for node and the browser supporting nesting, as it was removed from 0.3.x, so this library provides the previous and commonly desired behavior and twice as fast. Used by express, connect and others. Security Fixes: qs before 6.10.3, as used in Express before 4.17.3 a...

7.5CVSS7AI score0.14663EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2024/02/21 12:0 a.m.4 views

PT-2024-40207 · Surrealdb · Surrealdb

Name of the Vulnerable Software and Affected Versions: SurrealDB versions prior to 1.2.1 Description: The issue occurs when handling failed parsing of queries where the error is on a line terminator character, causing the span rendering to panic. This allows a client authorized to run queries in ...

6.5CVSS7.7AI score
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/06/28 5:58 a.m.46 views

CVE-2022-2238

A vulnerability was found in the search-api container when a query in the search filter gets parsed by the backend. This flaw allows an attacker to craft specific strings containing special characters that lead to crashing the pod and affects system availability while restarting...

6.5CVSS5.9AI score0.00822EPSS
Exploits0References3
OSV
OSV
added 2022/04/06 2:15 p.m.3 views

DEBIAN-CVE-2022-24793

PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.12 and prior affects applications that use PJSIP DNS resolution. It doesn't affect PJSIP users who utilize an external resolver. This vulnerability is related to...

7.5CVSS8.4AI score0.02108EPSS
Exploits1References1
OSV
OSV
added 2022/04/06 2:15 p.m.4 views

UBUNTU-CVE-2022-24793

PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.12 and prior affects applications that use PJSIP DNS resolution. It doesn't affect PJSIP users who utilize an external resolver. This vulnerability is related to...

7.5CVSS7.4AI score0.02108EPSS
Exploits1References5
OSV
OSV
added 2022/03/14 11:15 p.m.3 views

DEBIAN-CVE-2021-42388

Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl loop, a 16-bit unsigned user-supplied value 'offset' is read from the compressed data. The offset is later used in the length of a copy operation, without checking the...

8.1CVSS8AI score0.01549EPSS
Exploits1References1
Snyk
Snyk
added 2022/01/24 9:10 a.m.4 views

Prototype Pollution

Overview appwrite/server-ce is an End to end backend server for frontend and mobile apps. Affected versions of this package are vulnerable to Prototype Pollution. When parsing the query string in the getJsonFromUrl function, the key that is set in the result object is not properly sanitized leadi...

9.8CVSS6.7AI score0.02117EPSS
Exploits1References2
Snyk
Snyk
added 2022/01/24 9:10 a.m.13 views

Prototype Pollution

Overview litespeed.js is a Lite & fast micro javascript framework that is easy to learn. Affected versions of this package are vulnerable to Prototype Pollution. When parsing the query string in the getJsonFromUrl function, the key that is set in the result object is not properly sanitized leadin...

9.8CVSS6.7AI score0.02117EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2021/08/24 1:6 p.m.3 views

python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters

The package python/cpython is vulnerable to Web Cache Poisoning via urllib.parse.parseqsl and urllib.parse.parseqs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon ;, they can cause a difference in the interpretation of the request...

5.9CVSS6.8AI score0.35963EPSS
Exploits1References5
OSV
OSV
added 2021/05/24 7:52 p.m.3 views

GHSA-W8QV-6JWH-64R5 Regular Expression Denial of Service in browserslist

The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service ReDoS during parsing of queries...

5.3CVSS7.1AI score0.02429EPSS
Exploits1References6
OSV
OSV
added 2021/04/28 4:15 p.m.4 views

UBUNTU-CVE-2021-23364

The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service ReDoS during parsing of queries...

5.3CVSS7.2AI score0.02429EPSS
Exploits1References7
Debian CVE
Debian CVE
added 2021/04/28 3:35 p.m.29 views

CVE-2021-23364

The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service ReDoS during parsing of queries...

5.3CVSS6.8AI score0.02429EPSS
Exploits1
Rows per page
Query Builder