CVE-2026-42570

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From version 5.6.3 to before version 5.8.1, devalue.parse could, due to quirks in some JavaScript engines, be convinced to allocate much more memory than was needed when...

CRMEB 授权问题漏洞

CRMEB is an open-source Java e-commerce system developed by CRMEB. Versions of CRMEB 5.6.3 and earlier contained a vulnerability related to authorization issues. This vulnerability stemmed from incorrect handling of the orderid parameter in files like /api/storeintegral/order/detail/:uni, which...

CRMEB authorization issue vulnerabilities

CRMEB is an open-source Java e-commerce system developed by CRMEB. Versions of CRMEB 5.6.3 and earlier contained a vulnerability related to authorization issues. This vulnerability stemmed from incorrect handling of the parameter openId in the file crmeb/app/api/controller/v1/LoginController.php,...

strongSwan Buffer Overflow Vulnerability

strongSwan is an open source IPsec-based VPN solution for Linux platforms maintained by Swiss software developer Andreas Steffen. The solution includes authentication mechanisms such as X.509 public key certificates, secure storage of private keys, and smart cards. A buffer overflow vulnerability...