Lucene search
+L

11 matches found

NVD
NVD
added 2026/07/08 9:16 p.m.8 views

CVE-2026-56669

Elysia is a Typescript framework for request validation, type inference, OpenAPI documentation, and client-server communication. Prior to 1.4.29, Elysia uses getAll in form data normalization for multipart/form-data endpoints, causing the amount of work to grow quadratically with the number of...

7.5CVSS0.00358EPSS
Exploits0References4
CVE
CVE
added 2026/07/08 8:25 p.m.15 views

CVE-2026-56669

Elysia (a TypeScript framework for request validation, type inference, OpenAPI docs, and client-server communication) contains a vulnerability (CVE-2026-56669) caused by using getAll in form data normalization for multipart/form-data endpoints prior to 1.4.29. This leads to quadratic growth in wo...

7.5CVSS6AI score0.00358EPSS
Exploits0References4
OSV
OSV
added 2026/07/08 8:25 p.m.4 views

CVE-2026-56669 Elysia: Inefficient Algorithmic Complexity and Interpretation Conflict

Elysia is a Typescript framework for request validation, type inference, OpenAPI documentation, and client-server communication. Prior to 1.4.29, Elysia uses getAll in form data normalization for multipart/form-data endpoints, causing the amount of work to grow quadratically with the number of...

7.5CVSS6.1AI score0.00358EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/04/06 1:2 a.m.129 views

SmartContract-VulnHunter

🛡️ SmartContract VulnHunter The ultimate smart contract securi...

5.9AI score
Exploits0
Securelist
Securelist
added 2025/12/23 12:0 p.m.9 views

Assessing SIEM effectiveness

A SIEM is a complex system offering broad and flexible threat detection capabilities. Due to its complexity, its effectiveness heavily depends on how it is configured and what data sources are connected to it. A one-time SIEM setup during implementation is not enough: both the organization's...

6.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 7:3 a.m.7 views

CVE-2024-32983

Misskey is an open source, decentralized microblogging platform. Misskey doesn't perform proper normalization on the JSON structures of incoming signed ActivityPub activity objects before processing them, allowing threat actors to spoof the contents of signed activities and impersonate the author...

8.2CVSS6.8AI score0.004EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2024/02/05 11:12 a.m.21 views

Hands-On Review: SASE-based XDR from Cato Networks

Companies are engaged in a seemingly endless cat-and-mouse game when it comes to cybersecurity and cyber threats. As organizations put up one defensive block after another, malicious actors kick their game up a notch to get around those blocks. Part of the challenge is to coordinate the defensive...

6.8AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/08/10 5:0 p.m.27 views

OCSF: Working Together to Standardize Data

Teams spend a lot of time normalizing data before any analysis, investigation, or response can begin. It’s an unacceptable burden for you. And its days are finally numbered. Rapid7 and other security vendors are collaborating on an Open Cybersecurity Schema Framework OCSF, an open standard for bo...

7.1AI score
Exploits0
CNVD
CNVD
added 2022/08/03 12:0 a.m.30 views

F5 BIG-IP TMM Data Normalization Infinite Loop Vulnerability

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. An infinite loop vulnerability in F5 BIG-IP TMM data normalization stems from the fact that when an LTM virtual server is...

7.5CVSS2.4AI score0.01074EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/08/03 12:0 a.m.6 views

F5 BIG-IP 安全漏洞

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. An infinite loop vulnerability in F5 BIG-IP TMM data normalization stems from the fact that when an LTM virtual server is...

7.5CVSS5.8AI score0.01074EPSS
Exploits1References3
Kitploit
Kitploit
added 2020/04/06 12:0 p.m.112 views

OSSEM - Open Source Security Events Metadata

The Open Source Security Events Metadata OSSEM is a community-led project that focuses primarily on the documentation and standardization of security event logs from diverse data sources and operating systems. Security events are documented in a dictionary format and can be used as a reference fo...

7.1AI score
Exploits0References7
Rows per page
Query Builder