@3onedata/alsatian (>=0.1.8-fix.3 <=0.1.8-fix.5), @abyedev/hono-dotenv (=1.0.0) +526 more potentially affected by CVE-2026-44456 via hono (>=0.5.10 <=4.12.15)

hono NPM version =0.5.10, =0.1.8-fix.3, =5.0.0, =0.2.0, =0.2.0, =0.4.0, =0.2.0, =0.1.4, =2026.4.4, =1.0.2, =0.1.1, =0.0.1, =0.0.2-a, =0.1.22, =1.1.1, =1.3.0 and more Source cves: CVE-2026-44456 Source advisory: OSV:GHSA-9VQF-7F2P-GF9V...

PT-2025-2103 · Drupal · Drupal Monster Menus

Name of the Vulnerable Software and Affected Versions: Drupal Monster Menus versions 0.0.0 through 9.3.3 Drupal Monster Menus versions 9.4.0 through 9.4.1 Description: The issue is related to the deserialization of untrusted data, which allows object injection. This can potentially enable a remot...

PT-2023-6900

Name of the Vulnerable Software and Affected Versions net.sourceforge.htmlunit:htmlunit versions 0 through 3.0.0 Description The issue is related to incorrect code generation management in the HtmlUnit browser, which can be exploited to execute arbitrary code remotely via XSTL when browsing an...

PT-2023-11353 · Unknown · Ldapcherry

Name of the Vulnerable Software and Affected Versions: kakwa LdapCherry versions up to 0.x Description: A problematic issue was found in the URL Handler component, leading to cross site scripting. The attack can be launched remotely, affecting an unknown function. Recommendations: For versions up...

ApacheLogAnonymizer (>=0.1.0 <=0.1.1), BrewStillery (>=1.0.0 <=6.0.2) +3234 more potentially affected by CVE-2022-24713 via regex (>=0.1.58 <=1.5.4)

regex CARGO version =0.1.58, =0.1.0, =1.0.0, =0.1.1, =0.7.0, =0.10.0, =0.1.0, =0.0.6, =0.1.1, =0.1.4, =0.1.0, =0.2.0 and more Source cves: CVE-2022-24713 Source advisory: OSV:RUSTSEC-2022-0013...

PT-2022-16332 · Weblate · Weblate

Name of the Vulnerable Software and Affected Versions: Weblate versions 0 through 4.11.1 Description: The issue allows Remote Code Execution RCE via argument injection when using git or mercurial repositories. Authenticated users can change the behavior of the application in an unintended way,...

3base (>=0.1.30 <=0.1.31), 3d-a (>=1.0.0 <=1.1.5) +1008 more potentially affected by CVE-2020-28496 via three (>=0.100.0 <=0.124.0)

three NPM version =0.100.0, =0.1.30, =1.0.0, =1.0.0, =2.0.40, =1.0.1, =1.43.6, =1.0.0, =0.0.1, =1.0.0, =1.0.4 and more Source cves: CVE-2020-28496 Source advisory: OSV:GHSA-FQ6P-X6J3-CMMQ...

PT-2021-3621 · Apache +10 · Apache Tomcat +10

Name of the Vulnerable Software and Affected Versions: python/cpython versions 0 through 3.6.13 python/cpython versions 3.7.0 through 3.7.10 python/cpython versions 3.8.0 through 3.8.8 python/cpython versions 3.9.0 through 3.9.2 Description: The issue is related to Web Cache Poisoning via...

com.confluex:qpid-in-a-can (=0.2.0), com.dell.cpsd.common.messaging:common-testing (=1.5.0) +22 more potentially affected by CVE-2017-15702 via org.apache.qpid:qpid-broker (>=0.18 <=10.0.1)

org.apache.qpid:qpid-broker MAVEN version =0.18, =2.0.0, =1.0.0, =0.1, =0.1, =10.0.0, =0.18, =0.18, =0.18, =0.24 - org.apache.qpid:qpid-broker-plugins-amqp-0-10-protocol =0.24 - org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol =0.24 - org.apache.qpid:qpid-broker-plugins-amqp-1-0-protocol =0....