6 matches found
CVE-2026-39582
Unauthenticated Local File Inclusion in Hitek 1.8.3 versions...
CVE-2026-10846 affecting package ldns for versions less than 1.8.3-3
CVE-2026-10846 affecting package ldns for versions less than 1.8.3-3. A patched version of the package is available...
CVE-2026-23483 Blinko: Unauthorized Arbitrary File Read - /plugins
Blinko is an AI-powered card note-taking project. In versions from 1.8.3 and prior, the plugin file server endpoint uses join to concatenate paths but does not verify if the final path is within the plugins directory, leading to path traversal. At time of publication, there are no publicly...
Fulcio 安全漏洞
Fulcio is a certificate authority open-sourced by sigstore. A security vulnerability exists in Fulcio versions prior to 1.8.3, which stems from mishandling of the identity.extractIssuerURL function, which could lead to memory allocation issues...
YOURLS 跨站请求伪造漏洞
YOURLS is a set of PHP-based open source short link platform. A cross-site request forgery vulnerability exists in YOURLS versions prior to 1.8.3. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...
Siemens SIMATIC S7-1500 Denial of Service Vulnerability (CNVD-2016-00931)
The Siemens SIMATIC S7-1500 is a controller family with a modular structure. A denial of service vulnerability exists in Siemens SIMATIC S7-1500 versions prior to 1.8.3 when processing specially crafted TCP packets. An attacker can exploit the vulnerability to cause the CPU to automatically reboo...