8 matches found
STIGQter 路径遍历漏洞
STIGQter is a compliance checklist generation and reporting tool developed by Jon Hood. Versions of STIGQter from 0.1.2 to 1.2.7 contained a path traversal vulnerability. This vulnerability occurred when processing malicious.stigqter files, allowing attackers to execute local code during the user...
0.app1 (=1.0.52), 0.edsql (>=1.0.49 <=1.0.50) +2487 more potentially affected by CVE-2026-34770 via electron (>=0.1.2 <=38.6.0)
electron NPM version =0.1.2, =1.0.49, =1.0.49, =1.0.49, =1.0.1, =0.0.10, =1.0.2, =1.1.11, =0.1.0, =3.0.5, =3.0.7 and more Source cves: CVE-2026-34770 Source advisory: OSV:GHSA-JJP3-MQ3X-295M...
@228-fund/elysia-effect (=0.0.1), @228-fund/elysia-msgpack (>=0.0.1 <=0.0.3) +117 more potentially affected by CVE-2025-66456 +1 more via elysia (>=0.1.2 <=1.4.17)
elysia NPM version =0.1.2, =0.0.1, =0.0.1, =0.0.7, =0.0.1-0, =0.0.1, =0.0.3, =0.0.1, =0.1.0, =0.0.1, =0.1.0, =0.1.4, =0.1.0, =0.1.0, =1.0.0-next.4, =1.0.0-next.6 and more Source cves: CVE-2025-66456, CVE-2025-66457 Source advisory: OSV:GHSA-8VCH-M3F4-Q8JF...
PT-2025-16536 · Unknown · Notfound Easy Contact
Name of the Vulnerable Software and Affected Versions: NotFound Easy Contact versions 0.1.2 and earlier Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows Reflected XSS. Recommendations: For versions...
Hacker Hotel Badge Security Breach
Hacker Hotel Badge is a chip badge of the Hacker Hotel organization. A security vulnerability exists in Hacker Hotel Badge 2024 versions 0.1.0 through 0.1.3, which stems from an unrestricted resource allocation and can lead to a denial of service attack...
Dino Path Traversal Vulnerability
Dino is an open source chat client application for desktop from the Dino DINO team. Dino suffers from a path traversal vulnerability that stems from Dino prior to 0.1.2 and 0.2 failing to properly filter for special elements in the path of a resource or file. An attacker could use this...
lyra-workflow (>=0.1.2 <=0.1.2-rc.1) potentially affected by unknown CVE via grpc-ts-health-check (=1.0.14)
grpc-ts-health-check NPM version =1.0.14 is affected by a known vulnerability. The following packages have a transitive dependency on grpc-ts-health-check and may be impacted: - lyra-workflow =0.1.2, =0.1.2-rc.1 Source cves: unknown CVE Source advisory: OSV:GHSA-M86M-5M44-PC93...
0.app1 (=1.0.52), 0.edsql (>=1.0.49 <=1.0.50) +2943 more potentially affected by CVE-2020-4076 via electron (>=0.1.2 <=7.2.3)
electron NPM version =0.1.2, =1.0.49, =1.0.49, =1.0.49, =1.0.1, =0.0.10, =1.0.2, =1.1.11, =0.1.0, =0.1.0, =0.11.5 and more Source cves: CVE-2020-4076 Source advisory: OSV:GHSA-M93V-9QJC-3G79...