Lucene search
K

7 matches found

NVD
NVD
added 2026/06/25 7:16 p.m.8 views

CVE-2026-54092

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, unchecked passwords maximums allow for an arbitrarily large password to be passed into the login API. This spikes CPU and memory, and after...

6.5CVSS0.00484EPSS
Exploits0References4
OSV
OSV
added 2026/06/12 9:51 p.m.12 views

GHSA-W5FM-68J4-FPC4 File Browser has a DoS Vulnerability via Public Login API

Summary Unchecked passwords maximums allow for an arbitrarily large password to be passed into the login API. This spikes CPU and memory, and after testing, crashes, heavily lags any container created, and has even made my docker daemon start to send errors with status code 500 even after the...

8.7CVSS5.3AI score0.00484EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/06/12 9:51 p.m.15 views

File Browser has a DoS Vulnerability via Public Login API

Summary Unchecked passwords maximums allow for an arbitrarily large password to be passed into the login API. This spikes CPU and memory, and after testing, crashes, heavily lags any container created, and has even made my docker daemon start to send errors with status code 500 even after the...

6.5CVSS5.3AI score0.00484EPSS
Exploits0References4Affected Software2
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.15 views

PT-2026-49065

Name of the Vulnerable Software and Affected Versions File Browser versions prior to 2.63.6 Description Lack of maximum length validation for passwords allows an arbitrarily large string to be passed into the login API. When a large password is submitted, the CheckPwd function in users/password.g...

6.5CVSS5.8AI score0.00484EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.11 views

Grafana MSSQL Data Source Plugin 安全漏洞

The Grafana MSSQL Data Source Plugin is an open-source plugin from Grafana that allows for connecting to Microsoft SQL Server. There is a security vulnerability in the Grafana MSSQL data source plugin. This vulnerability stems from a logical flaw that allows low-privilege users to bypass API...

6.5CVSS5.8AI score0.00434EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2021/04/13 3:27 p.m.48 views

Improper Input Validation in SocksJS-Node

Incorrect handling of Upgrade header with the value websocket leads in crashing of containers hosting sockjs apps. This affects the package sockjs before 0.3.20...

5.3CVSS5.9AI score0.04978EPSS
Exploits3References9Affected Software1
OSV
OSV
added 2019/10/29 12:0 a.m.3 views

UBUNTU-CVE-2019-11483

Sander Bos discovered Apport mishandled crash dumps originating from containers. This could be used by a local attacker to generate a crash report for a privileged process that is readable by an unprivileged user...

7CVSS5.8AI score0.00401EPSS
Exploits0References4
Rows per page
Query Builder