BIT-PARSE-2026-31828 Parse Server has an LDAP injection via unsanitized user input in DN and group filter construction

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.5.2 and 8.6.26, the LDAP authentication adapter is vulnerable to LDAP injection. User-supplied input authData.id is interpolated directly into LDAP Distinguished Names DN and group...

slapi-nis 代码问题漏洞

slapi-nis is An open source application. NIS Server plug-in and Schema Compatibility plug-in for Red Hat Directory Server and 389 Directory Server. A security vulnerability exists in slapi-nis that stems from the use of NULL pointer dereferences when resolving bind DNs could allow an...

DEBIAN-CVE-2014-3999

The HordeLdap library before 2.0.6 for Horde allows remote attackers to bypass authentication by leveraging knowledge of the LDAP bind user DN...