3 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-39373
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to 1.5.7, an unauthenticated attacker can exhaust server memory by sending...
PYSEC-2023-37
Nautobot is a Network Source of Truth and Network Automation Platform. All users of Nautobot versions earlier than 1.5.7 are impacted by a remote code execution vulnerability. Nautobot did not properly sandbox Jinja2 template rendering. In Nautobot 1.5.7 has enabled sandboxed environments for the...
PT-2023-14561 · WordPress · Meteor Slides
Name of the Vulnerable Software and Affected Versions: Meteor Slides WordPress plugin versions prior to 1.5.7 Description: The issue concerns the Meteor Slides WordPress plugin, which does not properly validate and escape some of its shortcode attributes before outputting them back in the page...