8 matches found
EUVD-2026-35896
Spring Security's CookieRequestCache and CookieServerRequestCache store the pre-authentication request URL in a browser cookie so that users can be redirected back to their intended destination after a successful login. In affected versions, the full absolute URL is stored in the cookie and is us...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +687 more potentially affected by CVE-2026-22745 via org.springframework:spring-webflux (>=7.0.0 <=7.0.6)
org.springframework:spring-webflux MAVEN version =7.0.0, =0.1.0, =0.1.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =4.7.0, =0.0.1-alfa, =6.0.1, =4.0.0.0-M2, =4.0.0.0-M2, =4.0.0.0-M3 and more Source cves: CVE-2026-22745 Source advisory: OSV:GHSA-6P4F-WCWH-5VVM...
0pflow (>=0.1.0-dev.0de2bc6 <=0.1.0-dev.f5622ac), 10t-images-to-pdf (=1.0.3) +13826 more potentially affected by CVE-2026-26960 via tar (>=7.0.0 <=7.5.7)
tar NPM version =7.0.0, =0.1.0-dev.0de2bc6, =0.2.0, =0.0.1, =3.1.2, =1.0.1, =4.11.0, =1.0.1, =1.31.1, =2.0.0, =0.1.0, =0.1.0, =1.7.0-beta.7, =1.7.0-beta.58 - @0x706b/tsplus-installer =0.0.190 and more Source cves: CVE-2026-26960 Source advisory: SNYK:JS-TAR-15307072...
AZL-63750 CVE-2025-27151 affecting package valkey for versions less than 8.0.3-3
Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based buffer overflow exists in redis-check-aof due to the use of memcpy with strlenfilepath when copying a user-supplied file path into a fixed-size stack buffer. This allo...
PT-2022-5760 · Fortinet · Fortitester
Name of the Vulnerable Software and Affected Versions: FortiTester versions 3.0.0 through 3.9.1 FortiTester versions 4.0.0 through 4.2.0 FortiTester versions 7.0.0 through 7.1.0 Description: The issue is related to an improper neutralization of special elements used in an OS command, which may...
Vulnerability fixed in Redis
A vulnerability has been fixed in Redis. The vulnerability allows a malicious party to use heap overflow to execute arbitrary code with user privileges or a denial-of-service DoS. To exploit the vulnerability, a malicious party must issue an XAUTOCLAIM command with a rogue COUNT argument on a key...
CVE-2022-29053
A missing cryptographic steps vulnerability CWE-325 in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0.0 through 7.0.5 and below 7.0.0 may allow an attacker in possession of the encrypted file to decipher it...
@fellesdatakatalog/internal-footer (>=0.2.0 <=0.3.10), @fellesdatakatalog/internal-header (>=0.1.0 <=0.5.2) +18 more potentially affected by unknown CVE via @uifabric/utilities (>=7.0.0-rc001 <=7.16.0)
@uifabric/utilities NPM version =7.0.0-rc001, =0.2.0, =0.1.0, =2.0.0, =7.0.0-rc001, =7.0.0-rc001, =7.0.0-alpha001, =7.0.0-rc001, =7.0.0-rc001, =7.0.0-alpha001, =7.0.0-rc001, =7.0.0-rc001, =7.0.0-rc001, =7.0.0-rc001, =7.0.0-rc001, =7.0.0-rc002 and more Source cves: unknown CVE Source advisory:...