Lucene search
+L

255 matches found

snyk
snyk
added 2026/06/15 5:22 p.m.8 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the two-way property binding. An attacker can execute arbitrary JavaScript in the context of the user's browser by supplying crafted input to a sensitive DOM property bound with two-way binding syntax. Note:...

8.3CVSS5.9AI score0.00195EPSS
Exploits0References2
github
github
added 2026/06/15 4:51 p.m.39 views

@angular/core: Angular Template and Dynamic Component Namespace Bypass leading to Cross-Site Scripting (XSS)

An issue in the @angular/core package allows bypassing script-execution restrictions during dynamic component creation. Specifically, the dynamic component instantiation mechanism createComponent failed to reject mounting components directly onto a or namespaced script element such as . This...

6.1CVSS6.1AI score0.00238EPSS
Exploits0References5Affected Software1
ptsecurity
ptsecurity
added 2026/06/12 12:0 a.m.30 views

PT-2026-48932

Summary A NoSQL injection vulnerability existed in MongoDBSaver where checkpoint identifier fields from config.configurable were used in MongoDB queries without strict type enforcement. In vulnerable versions, attacker-controlled object payloads for example MongoDB operators like $gt and $ne coul...

6.7CVSS5.4AI score0.00022EPSS
Exploits0References6
snyk
snyk
added 2026/06/08 12:0 a.m.8 views

Cross-site Scripting (XSS)

Overview org.springframework:spring-webmvc is a package that provides Model-View-Controller MVC architecture and ready components that can be used to develop flexible and loosely coupled web applications. Affected versions of this package are vulnerable to Cross-site Scripting XSS via...

6.9CVSS5.6AI score0.0014EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/06/05 7:33 p.m.13 views

CVE-2026-9241

The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and including 1.4.6. This is due to the getvalue function in classes/fixed/fixeduserrole.php trusting the attacker-controlled...

4.3CVSS5.4AI score0.00213EPSS
Exploits0References1
osv
osv
added 2026/05/28 10:16 a.m.7 views

UBUNTU-CVE-2026-46197

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: validate SVM ioctl nattr against buffer size Validate nattr field against the buffer size, preventing out-of-bounds buffer access via user-controlled attribute count. cherry picked from commit...

7.8CVSS5.8AI score0.00139EPSS
Exploits0References8
osv
osv
added 2026/05/27 5:1 p.m.4 views

CVE-2026-48128 Budibase: SSRF via User-Controlled queryId in Automation Execute Query Step

Budibase is an open-source low-code platform. Prior to 3.39.0, the executeQuery automation step in Budibase accepts a queryId from automation step inputs and passes it directly to the query execution controller without additional validation. When combined with a REST datasource configured to targ...

5.1CVSS6.1AI score0.00329EPSS
Exploits0References3
snyk
snyk
added 2026/05/14 3:23 p.m.8 views

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the refint process. An attacker can execute arbitrary code as the operating system user running the database or execute arbitrary SQL as the database user performing a primary key update by providing...

8.8CVSS7.7AI score0.00378EPSS
Exploits0References2
github
github
added 2026/05/12 12:32 p.m.14 views

Spring AI: Prompt Injection via Memory Poisoning in PromptChatMemoryAdvisor

A malicious user could craft input that is stored in conversation memory and later interpreted by the model in an unintended way. Applications using the affected advisor with user-controlled input may be susceptible to manipulation of model behavior across conversation turns...

8.2CVSS5.7AI score0.00218EPSS
Exploits0References3Affected Software1
ptsecurity
ptsecurity
added 2026/05/06 12:0 a.m.24 views

PT-2026-38297

Name of the Vulnerable Software and Affected Versions Scramble versions 0.13.2 through 0.13.21 Description When documentation endpoints are publicly accessible and validation rules reference user-controlled input, request supplied data may be evaluated during documentation generation. This can le...

9.4CVSS6.5AI score0.0586EPSS
Exploits3References9
redhat
redhat
added 2026/04/10 7:25 p.m.2 views

python: Quadratic complexity in os.path.expandvars() with user-controlled template

A vulnerability in Python’s os.path.expandvars function that can cause performance degradation. When processing specially crafted, user-controlled input with nested environment variable patterns, the function exhibits quadratic time complexity, potentially leading to excessive CPU usage and denia...

5.5CVSS6.7AI score0.00136EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/04/01 12:0 a.m.13 views

PT-2026-29824

Name of the Vulnerable Software and Affected Versions PraisonAI versions prior to 1.5.90 Description PraisonAI's run python function constructs a shell command string by interpolating user-controlled code into python3 -c "" and passing it to subprocess.run..., shell=True. The escaping logic only...

9.8CVSS6.3AI score0.00545EPSS
Exploits1References7
attackerkb
attackerkb
added 2026/03/27 5:33 a.m.4 views

CVE-2026-22743

Spring AI's spring-ai-neo4j-store contains a Cypher injection vulnerability in Neo4jVectorFilterExpressionConverter. When a user-controlled string is passed as a filter expression key in Neo4jVectorFilterExpressionConverter of spring-ai-neo4j-store, doKey embeds the key into a backtick-delimited...

7.5CVSS5.8AI score0.0025EPSS
Exploits0References2Affected Software1
redhatcve
redhatcve
added 2026/03/26 2:59 p.m.6 views

CVE-2026-31862

Cloud CLI aka Claude Code UI is a desktop and mobile UI for Claude Code, Cursor CLI, Codex, and Gemini-CLI. Prior to 1.24.0, multiple Git-related API endpoints use execAsync with string interpolation of user-controlled parameters file, branch, message, commit, allowing authenticated attackers to...

9.1CVSS6.1AI score0.00437EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2026/03/12 9:16 p.m.4 views

CVE-2026-1527

ImpactWhen an application passes user-controlled input to the upgrade option of client.request, an attacker can inject CRLF sequences \r\n to: Inject arbitrary HTTP headers Terminate the HTTP request prematurely and smuggle raw data to non-HTTP services Redis, Memcached, Elasticsearch The...

4.6CVSS6AI score0.00256EPSS
Exploits0References1
osv
osv
added 2026/03/04 7:16 p.m.4 views

DEBIAN-CVE-2026-0847

A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in multiple CorpusReader classes, including WordListCorpusReader, TaggedCorpusReader, and BracketParseCorpusReader. These classes fail to properly sanitize or validate file paths, enabling...

7.5CVSS8.7AI score0.00924EPSS
Exploits3References1
attackerkb
attackerkb
added 2026/03/04 6:25 p.m.7 views

CVE-2026-0847

A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in multiple CorpusReader classes, including WordListCorpusReader, TaggedCorpusReader, and BracketParseCorpusReader. These classes fail to properly sanitize or validate file paths, enabling...

8.6CVSS6.6AI score0.00924EPSS
Exploits3References2
osv
osv
added 2026/01/26 2:49 p.m.9 views

BIT-PYTHON-MIN-2025-15366 IMAP command injection in user-controlled commands

The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters...

5.9CVSS5.9AI score0.0036EPSS
Exploits0References5
susecve
susecve
added 2026/01/22 12:38 a.m.6 views

SUSE CVE-2025-15367

The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters...

6.7CVSS5.5AI score0.00315EPSS
Exploits0References26
redhatcve
redhatcve
added 2026/01/09 9:20 a.m.7 views

CVE-2021-33675

Under certain conditions, SAP Contact Center - version 700, does not sufficiently encode user-controlled inputs. This allows an attacker to exploit a Reflected Cross-Site Scripting XSS vulnerability through phishing and to execute arbitrary code on the victim's browser...

6.1CVSS6.2AI score0.00784EPSS
Exploits0References1
Rows per page
Query Builder