Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added yesterday10 views

PT-2026-55256

Name of the Vulnerable Software and Affected Versions obs tar scm source service versions prior to 0.12.4 Description A shellcode injection exists in the mercurial handler of the source service. Attackers who can provide a crafted service file can execute arbitrary code as the source service or t...

10CVSS6.2AI score
Exploits0References3
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.7 views

WordPress plugin WPGraphQL WooCommerce security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability in the...

5.3CVSS6.9AI score0.00724EPSS
Exploits2References3
OSV
OSV
added 2023/06/25 11:5 a.m.3 views

OESA-2023-1364 cpp-httplib security update

A C++11 single-file header-only cross platform HTTP/HTTPS library. It's extremely easy to setup. Just include httplib.h file in your code Security Fixes: Versions of the package yhirose/cpp-httplib before 0.12.4 are vulnerable to CRLF Injection when untrusted user input is used to set the...

8.8CVSS7AI score0.01137EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/05/31 11:21 p.m.3 views

SUSE CVE-2023-26130

Versions of the package yhirose/cpp-httplib before 0.12.4 are vulnerable to CRLF Injection when untrusted user input is used to set the content-type header in the HTTP .Patch, .Post, .Put and .Delete requests. This can lead to logical errors and other misbehaviors. Note: This issue is present due...

8.8CVSS7.2AI score0.01137EPSS
Exploits0References4
OSV
OSV
added 2023/05/30 5:15 a.m.2 views

DEBIAN-CVE-2023-26130

Versions of the package yhirose/cpp-httplib before 0.12.4 are vulnerable to CRLF Injection when untrusted user input is used to set the content-type header in the HTTP .Patch, .Post, .Put and .Delete requests. This can lead to logical errors and other misbehaviors. Note: This issue is present due...

8.8CVSS8AI score0.01137EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/30 12:0 a.m.4 views

PT-2023-3153 · Yhirose · Cpp-Httplib

Name of the Vulnerable Software and Affected Versions: yhirose/cpp-httplib versions prior to 0.12.4 Description: The issue is related to the incomplete fix for a previous problem, which allows an attacker to inject arbitrary HTTP headers when untrusted user input is used to set the content-type...

8.8CVSS7.2AI score0.01137EPSS
Exploits0References18
Rows per page
Query Builder