Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:36 p.m.8 views

CVE-2026-41009

When the director sends a long-running request e.g. compilepackage, the agent's reply JSON is consumed by AgentClient. injectcompilelog line 332-339 reads response'value''result''compilelogid' and formatexception line 318-325 reads exception'blobstoreid'; both pass the agent-supplied string...

5.8CVSS5.4AI score0.00099EPSS
Exploits0References1
NVD
NVD
added 2026/05/27 8:16 a.m.18 views

CVE-2026-41009

When the director sends a long-running request e.g. compilepackage, the agent's reply JSON is consumed by AgentClient. injectcompilelog line 332-339 reads response'value''result''compilelogid' and formatexception line 318-325 reads exception'blobstoreid'; both pass the agent-supplied string...

5.8CVSS0.00099EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/27 6:45 a.m.11 views

EUVD-2026-32098

When the director sends a long-running request e.g. compilepackage, the agent's reply JSON is consumed by AgentClient. injectcompilelog line 332-339 reads response'value''result''compilelogid' and formatexception line 318-325 reads exception'blobstoreid'; both pass the agent-supplied string...

5.8CVSS5.8AI score0.00099EPSS
Exploits0References1
RubySec
RubySec
added 2024/07/10 12:0 a.m.23 views

Decidim cross-site scripting (XSS) in the admin panel

Impact The admin panel is subject to potential XSS attach in case the attacker manages to modify some records being uploaded to the server. The attacker is able to change e.g. to if they know how to craft these requests themselves. And then enter the returned blob ID to the form inputs manually b...

5.4CVSS6.1AI score0.00341EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder