SUSE CVE-2025-11375

Consul and Consul Enterprise's “Consul” event endpoint is vulnerable to denial of service DoS due to lack of maximum value on the Content Length header. This vulnerability, CVE-2025-11375, is fixed in Consul Community Edition 1.22.0 and Consul Enterprise 1.22.0, 1.21.6, 1.20.8 and 1.18.12...

Consul event endpoint is vulnerable to denial of service

Consul and Consul Enterprise’s “Consul” event endpoint is vulnerable to denial of service DoS due to lack of maximum value on the Content Length header. This vulnerability, CVE-2025-11375, is fixed in Consul Community Edition 1.22.0 and Consul Enterprise 1.22.0, 1.21.6, 1.20.8 and 1.18.12...

CVE-2025-11374

Consul and Consul Enterprise’s “Consul” key/value endpoint is vulnerable to denial of service DoS due to incorrect Content Length header validation. This vulnerability, CVE-2025-11374, is fixed in Consul Community Edition 1.22.0 and Consul Enterprise 1.22.0, 1.21.6, 1.20.8 and 1.18.12...

CVE-2025-11375

CVE-2025-11375 affects HashiCorp Consul and Consul Enterprise. The issue is a DoS vulnerability in the event endpoint caused by lack of a maximum value on the Content-Length header. Affected versions include Consul Community Edition up to 1.21.5 and Consul Enterprise up to 1.21.5, with fixes in C...

EUVD-2020-17609

Malware in sbrugna...

EUVD-2020-17608

Malware in sbrugna...

PT-2023-9456 · Google +10 · Go +10

Name of the Vulnerable Software and Affected Versions: Go versions prior to 1.20.8 dev-go/go-tools versions prior to 0.3.0 Description: The issue is related to the html/template package in the Go programming language, which does not properly handle HTML-like comment tokens or hashbang "!" comment...

WordPress 插件 跨站脚本漏洞

WordPress Plugin is an open source application plugin for WordPress. WordPress Plugin A cross-site scripting vulnerability exists that stems from the Splash Header plugin prior to version 1.20.8 not clearing and escaping some of its settings when outputting in the admin dashboard, which leads to...

Krpano Panorama Viewer Cross-Site Scripting Vulnerability (CNVD-2021-02617)

krpano Panorama Viewer is a software for viewing panorama files from the German company krpano. The software supports high-resolution images, interactive virtual roaming, custom-designed user interface, and other features. A cross-site scripting vulnerability exists in Krpano Panorama Viewer in...

Krpano Panorama Viewer Cross-Site Scripting Vulnerability

krpano Panorama Viewer is a software for viewing panorama files from the German company krpano. The software supports high-resolution images, interactive virtual roaming, custom-designed user interface, and other features. A cross-site scripting vulnerability exists in Krpano Panorama Viewer 1.20...

krpano Panorama Viewer 跨站脚本漏洞

krpano Panorama Viewer is a software for viewing panorama files from the German company krpano. The software supports high-resolution images, interactive virtual roaming, custom-designed user interface, and other features. A cross-site scripting vulnerability exists in Krpano Panorama Viewer in...