Lucene search
K

7 matches found

Snyk
Snyk
added 2026/05/07 7:49 p.m.10 views

Arbitrary File Upload

Overview Affected versions of this package are vulnerable to Arbitrary File Upload via the addImageAction process. An attacker can execute arbitrary code on the server by uploading a file with executable extensions disguised as an image, bypassing MIME type validation. This is only exploitable if...

6.3CVSS6.2AI score0.00229EPSS
Exploits0References3
Snyk
Snyk
added 2026/05/07 7:33 p.m.11 views

Improper Removal of Sensitive Information Before Storage or Transfer

Overview Affected versions of this package are vulnerable to Improper Removal of Sensitive Information Before Storage or Transfer in the image upload and download process. An attacker can access sensitive metadata, such as GPS coordinates, device information, timestamps, and personally identifiab...

7.1CVSS5.8AI score0.00227EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/23 1:31 p.m.11 views

CVE-2026-2887

A security vulnerability has been detected in aardappel lobster up to 2025.4. This impacts the function lobster::TypeName in the library dev/src/lobster/idents.h. Such manipulation leads to uncontrolled recursion. The attack can only be performed from a local environment. The exploit has been...

5.5CVSS4.2AI score0.0018EPSS
Exploits1References1
CVE
CVE
added 2026/02/21 9:2 p.m.13 views

CVE-2026-2887

CVE-2026-2887 affects aardappel lobster up to 2025.4. The vulnerability is in the function lobster::TypeName within lib dev/src/lobster/idents.h, causing uncontrolled recursion. Exploitation is local and publicly disclosed. A fix is available in version 2026.1; patch name 8ba49f98ccfc9734ef352146...

5.5CVSS5AI score0.0018EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2026/02/21 9:2 p.m.25 views

CVE-2026-2887 aardappel lobster idents.h TypeName recursion

A security vulnerability has been detected in aardappel lobster up to 2025.4. This impacts the function lobster::TypeName in the library dev/src/lobster/idents.h. Such manipulation leads to uncontrolled recursion. The attack can only be performed from a local environment. The exploit has been...

4.8CVSS0.0018EPSS
Exploits1References9
OSV
OSV
added 2026/02/21 9:2 p.m.4 views

CVE-2026-2887 aardappel lobster idents.h TypeName recursion

A security vulnerability has been detected in aardappel lobster up to 2025.4. This impacts the function lobster::TypeName in the library dev/src/lobster/idents.h. Such manipulation leads to uncontrolled recursion. The attack can only be performed from a local environment. The exploit has been...

4.8CVSS5.4AI score0.0018EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2026/02/21 12:0 a.m.8 views

PT-2026-21396

Name of the Vulnerable Software and Affected Versions aardappel lobster versions prior to 2026.1 Description A security issue exists in aardappel lobster up to version 2025.4. The lobster::TypeName function within the dev/src/lobster/idents.h library is susceptible to uncontrolled recursion. This...

4.8CVSS4.5AI score0.0018EPSS
Exploits1References12
Rows per page
Query Builder