Lucene search
K

8 matches found

OSV
OSV
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-555 toui allows user-specific variables to be shared between users

Impact Websites that use Website.uservars property in versions. Patches It affects versions v2.0.1 to v2.4.0. Please upgrade to v2.4.1 Workarounds Do not use Website.uservars in websites when using versions v2.0.1 to v2.4.0. Also, do not use Website.signinuser in version v2.4.0 only. Explanation...

9.1CVSS7.1AI score0.00651EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/06/12 5:12 p.m.11 views

CVE-2026-47225 Improper Search Cache Isolation for Scoped Search API Keys in Typesense

Typesense is a fast, typo-tolerant search engine. Prior to versions 29.1 and 30.2, there is a cache isolation issue affecting search requests that use both server-side search result caching and Scoped Search API Keys. Under specific request ordering, cached search results could be reused across...

6CVSS5.3AI score0.00226EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-7561

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Red Hat JBoss EAP version 3.0.7 through before 4.0.0.Beta1 is vulnerable to a server-side cache poisoning or CORS requests in the JAX-RS component resulting in ...

7.5CVSS7.4AI score0.01514EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/17 12:0 a.m.29 views

Next.js 安全漏洞

Next.js is a React framework open-sourced by Vercel. A security vulnerability exists in Next.js versions 13.5.1 through 14.2.10 and earlier. An attacker exploits the vulnerability to poison the caches of non-dynamic server-side rendering routes in the page router by sending specially crafted HTTP...

7.5CVSS6.4AI score0.58768EPSS
Exploits3References4
Positive Technologies
Positive Technologies
added 2023/05/24 12:0 a.m.6 views

PT-2023-24191

Name of the Vulnerable Software and Affected Versions ToUI versions 2.0.1 through 2.4.0 Description The issue affects websites that use the Website.user vars property. ToUI utilizes Flask-Caching SimpleCache to store user variables, which are stored on the server side. Recommendations For version...

9.1CVSS7.2AI score0.00651EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2017/09/13 5:29 p.m.38 views

CVE-2017-7561

Red Hat JBoss EAP version 3.0.7 through before 4.0.0.Beta1 is vulnerable to a server-side cache poisoning or CORS requests in the JAX-RS component resulting in a moderate impact...

7.5CVSS7.1AI score0.01514EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/09/13 5:0 p.m.39 views

CVE-2017-7561

Red Hat JBoss EAP version 3.0.7 through before 4.0.0.Beta1 is vulnerable to a server-side cache poisoning or CORS requests in the JAX-RS component resulting in a moderate impact...

8.4AI score0.01514EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2017/09/13 5:0 p.m.76 views

CVE-2017-7561

Red Hat JBoss EAP version 3.0.7 through before 4.0.0.Beta1 is vulnerable to a server-side cache poisoning or CORS requests in the JAX-RS component resulting in a moderate impact...

7.5CVSS7.6AI score0.01514EPSS
Exploits0
Rows per page
Query Builder