Lucene search
K

9 matches found

SUSE CVE
SUSE CVE
added 2026/06/20 2:29 a.m.10 views

SUSE CVE-2026-48937

A flaw in Node.js HTTP/2 server API can cause servers to keep accepting data even after sending a GOAWAY frame. This vulnerability affects two supported release lines: Node.js 22 and Node.js 24...

5.3CVSS6AI score0.00445EPSS
Exploits0References5
NVD
NVD
added 2026/06/18 7:16 p.m.12 views

CVE-2026-48937

A flaw in Node.js HTTP/2 server API can cause servers to keep accepting data even after sending a GOAWAY frame. This vulnerability affects two supported release lines: Node.js 22 and Node.js 24...

5.3CVSS0.00445EPSS
Exploits0References2
OSV
OSV
added 2026/06/18 7:16 p.m.3 views

ALPINE-CVE-2026-48937

A flaw in Node.js HTTP/2 server API can cause servers to keep accepting data even after sending a GOAWAY frame. This vulnerability affects two supported release lines: Node.js 22 and Node.js 24...

5.3CVSS6.1AI score0.00445EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/18 6:1 p.m.4 views

CVE-2026-48937

A flaw in Node.js HTTP/2 server API can cause servers to keep accepting data even after sending a GOAWAY frame. This vulnerability affects two supported release lines: Node.js 22 and Node.js 24...

5.3CVSS5.8AI score0.00445EPSS
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-36900

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.00112EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/06/26 7:53 a.m.4 views

net/http: Request smuggling due to acceptance of invalid chunked data in net/http

A flaw was found in the net/http golang package. The net/http package incorrectly accepts messages that end with a line feed LF instead of the proper line ending. When used with another server that also misinterprets this, it can lead to request smuggling—where an attacker tricks the system to se...

9.1CVSS7.1AI score0.00724EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/04/08 8:4 p.m.25 views

CVE-2025-22871 Request smuggling due to acceptance of invalid chunked data in net/http

The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext...

9.4AI score0.00724EPSS
Exploits0References4
NVD
NVD
added 2024/11/25 9:15 a.m.16 views

CVE-2022-33861

IPP software versions prior to v1.71 do not sufficiently verify the authenticity of data, in a way that causes it to accept invalid data...

5.1CVSS0.00112EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2006/03/29 12:0 a.m.66 views

PHP 4.x/5.x - 'Html_Entity_Decode()' Information Disclosure

source: https://www.securityfocus.com/bid/17296/info PHP 'htmlentitydecode' function is prone to an information-disclosure vulnerability. This issue arises when a script using the function accepts data from a remote untrusted source and returns the function's result to an attacker. Information th...

7.4AI score
Exploits0
Rows per page
Query Builder