Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/06/07 12:43 a.m.15 views

CVE-2026-44660

A flaw was found in UltraJSON, a fast JSON encoder and decoder. When the ujson.dump function attempts to write data to a file-like object and an error occurs during this operation, the memory allocated for the serialized JSON string is not properly released. This continuous failure to deallocate...

8.7CVSS5AI score0.00421EPSS
Exploits1References6
OSV
OSV
added 2026/05/27 9:16 p.m.5 views

DEBIAN-CVE-2026-44660

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Prior to 5.12.1, when ujson.dump writes to a file-like object and the write operation raises an exception, the serialized JSON string object is not decremented, leaking memory. Each failed write operatio...

7.5CVSS5.8AI score0.00421EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/27 8:42 p.m.51 views

CVE-2026-44660 UltraJSON: Memory Leak in ujson.dump() on Write Failure

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Prior to 5.12.1, when ujson.dump writes to a file-like object and the write operation raises an exception, the serialized JSON string object is not decremented, leaking memory. Each failed write operatio...

8.7CVSS0.00421EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/19 10:46 p.m.18 views

CVE-2026-32721 LuCI luci-mod-network: Possible XSS attack in WiFi scan on Joining Wireless Client modal

LuCI is the OpenWrt Configuration Interface. Versions prior to both 24.10.5 and 25.12.0, contain a stored XSS vulnerability in the wireless scan modal, where SSID values from scan results are rendered as raw HTML without any sanitization. The wireless.js file in the luci-mod-network package passe...

8.6CVSS0.00239EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/03/30 6:23 a.m.4 views

WordPress Plugin "Advanced Custom Fields" vulnerable to missing authorization

Overview WordPress Plugin "Advanced Custom Fields" provided by Delicious Brains contains a missing authorization vulnerability CWE-862. Keitaro Yamazaki of Ierae Security, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

6.5CVSS6.6AI score0.01437EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/09/09 12:0 a.m.5 views

Yakamara Media Redaxo CMS 操作系统命令注入漏洞

Yakamara Media Redaxo CMS is Yakamara Media organization of a set of open source Web portal content management system . The system supports custom modules, plug-in extensions, project backups and more. A security vulnerability exists in Yakamara Media Redaxo CMS version 5.12.1, which can be...

9CVSS7.4AI score0.04554EPSS
Exploits1References3
Rows per page
Query Builder