VulnCheck KEV: CVE-2026-27971

Qwik is a performance focused javascript framework. qwik =1.19.0 is vulnerable to RCE due to an unsafe deserialization vulnerability in the server$ RPC mechanism that allows any unauthenticated user to execute arbitrary code on the server with a single HTTP request. Affects any deployment where...

SHIRASAGI 安全漏洞

SHIRASAGI is a content management system of SHIRASAGI open source. A security vulnerability exists in versions prior to SHIRASAGI v1.19.1, which stems from improper handling of URLs in HTTP requests and is susceptible to path traversal attacks...

c-ares 安全特征问题漏洞

c-ares is a C library for asynchronous DNS requests from the individual developers of c-ares. A security vulnerability exists in c-ares versions prior to 1.19.1, which stems from generating predictable output...

AZL-52863 CVE-2022-27664 affecting package golang for versions less than 1.18.8-1

In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error...

UBUNTU-CVE-2021-23472

This affects versions before 1.19.1 of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array instead of a string even if the escape attribute is set...