198426 matches found
Eclipse Jetty ConcatServlet - Information Disclosure
Eclipse Jetty through 9.4.40, through 10.0.2, and through 11.0.2 is susceptible to information disclosure. Requests to the ConcatServlet with a doubly encoded path can access protected resources within the WEB-INF directory, thus enabling an attacker to potentially obtain sensitive information,...
QNAP Music Station < 5.4.0 - Authentication Bypass
An improper authentication vulnerability has been reported to affect Music Station. If exploited, the vulnerability could allow users to compromise the security of the system via a network. We have already fixed the vulnerability in the following version: Music Station 5.4.0 and later id:...
Jenkins build-metrics 1.3 - Cross-Site Scripting
Jenkins build-metrics 1.3 is vulnerable to a reflected cross-site scripting vulnerability that allows attackers to inject arbitrary HTML and JavaScript into the web pages the plugin provides. id: CVE-2019-10475 info: name: Jenkins build-metrics 1.3 - Cross-Site Scripting author: madrobot severity...
CVE-2026-16208 django-tastypie throttle.py CacheDBThrottle race condition
A flaw has been found in django-tastypie up to 0.15.1. The affected element is the function CacheThrottle/CacheDBThrottle of the file tastypie/throttle.py. This manipulation causes race condition. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitability...
GHSA-VV7Q-7JX5-F767 vulnerabilities
Vulnerabilities for packages: mcp-atlassian...
RHSA-2026:39952 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
Bulletin has no description...
Oracle Business Intelligence - Path Traversal
Oracle Business Intelligence versions 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0 are vulnerable to path traversal in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. id: CVE-2019-2588 info: name: Oracle Business Intelligence - Path...
OneDev.io < 11.0.9 - Arbitrary File Read
Files on the host computer can be accessed by directory traversal. id: CVE-2024-45309 info: name: OneDev.io 11.0.9 - Arbitrary File Read author: isacaya severity: high description: | Files on the host computer can be accessed by directory traversal. impact: | An attacker would be able to view the...
Rclone RC - Broken Access Control
Rclone = 1.45.0 and = 1.45.0 and 1.73.5 contains a broken access control vulnerability caused by unauthenticated access to the RC endpoint options/set allowing mutation of global runtime configuration, letting unauthenticated attackers access sensitive administrative functions, exploit requires R...
ROOT-OS-DEBIAN-12-CVE-2026-31625 CVE-2026-31625 in rootio-linux - Patched by Root
Root has patched CVE-2026-31625 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-52969 CVE-2026-52969 in rootio-linux - Patched by Root
Root has patched CVE-2026-52969 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-31613 CVE-2026-31613 in rootio-linux - Patched by Root
Root has patched CVE-2026-31613 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-38185 CVE-2025-38185 in rootio-linux - Patched by Root
Root has patched CVE-2025-38185 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-38006 CVE-2025-38006 in rootio-linux - Patched by Root
Root has patched CVE-2025-38006 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-37841 CVE-2025-37841 in rootio-linux - Patched by Root
Root has patched CVE-2025-37841 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-38557 CVE-2024-38557 in rootio-linux - Patched by Root
Root has patched CVE-2024-38557 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-68209 CVE-2025-68209 in rootio-linux - Patched by Root
Root has patched CVE-2025-68209 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-38211 CVE-2025-38211 in rootio-linux - Patched by Root
Root has patched CVE-2025-38211 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-31723 CVE-2026-31723 in rootio-linux - Patched by Root
Root has patched CVE-2026-31723 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-38059 CVE-2025-38059 in rootio-linux - Patched by Root
Root has patched CVE-2025-38059 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...